First published: Tue Jul 30 2019(Updated: )
Bypass lock protection in the Nextcloud Android app prior to version 3.6.2 causes leaking of thumbnails when requesting the Android content provider although the lock protection was not solved.
Credit: support@hackerone.com
Affected Software | Affected Version | How to fix |
---|---|---|
Nextcloud Nextcloud | <3.6.2 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID is CVE-2019-5452.
The severity level of CVE-2019-5452 is low (2.4).
The affected software of CVE-2019-5452 is the Nextcloud Android app prior to version 3.6.2.
CVE-2019-5452 causes leaking of thumbnails when requesting the Android content provider although the lock protection was not solved.
To fix CVE-2019-5452, update your Nextcloud Android app to version 3.6.2 or higher.