CVE-2023-45149

Nextcloud talk is a chat module for the Nextcloud server platform. In affected versions brute force protection of public talk conversation passwords can be bypassed, as there was an endpoint validating the conversation password without registering bruteforce attempts. It is recommended that the Nextcloud Talk app is upgraded to 15.0.8, 16.0.6 or 17.1.1. There are no known workarounds for this vulnerability.

CVSS v3 4.3 MEDIUM

4.3^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 2.8 / Impact : 1.4

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact LOW

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

References

Link	Resource
https://github.com/nextcloud/security-advisories/security/advisories/GHSA-7rf8-pqmj-rpqv	Vendor Advisory
https://github.com/nextcloud/spreed/pull/10545	Issue Tracking Patch
https://hackerone.com/reports/2094473	Permissions Required

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:nextcloud:talk::::::::
	cpe:2.3:a:nextcloud:talk::::::::
	cpe:2.3:a:nextcloud:talk::::::::

History

20 Oct 2023, 12:12

Type	Values Removed	Values Added
First Time		Nextcloud Nextcloud talk
CPE		cpe:2.3:a:nextcloud:talk::::::::
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 4.3
References	~~(MISC) https://github.com/nextcloud/spreed/pull/10545 -~~	(MISC) https://github.com/nextcloud/spreed/pull/10545 - Issue Tracking, Patch
References	~~(MISC) https://github.com/nextcloud/security-advisories/security/advisories/GHSA-7rf8-pqmj-rpqv -~~	(MISC) https://github.com/nextcloud/security-advisories/security/advisories/GHSA-7rf8-pqmj-rpqv - Vendor Advisory
References	~~(MISC) https://hackerone.com/reports/2094473 -~~	(MISC) https://hackerone.com/reports/2094473 - Permissions Required

16 Oct 2023, 20:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2023-10-16 20:15

Updated : 2023-12-10 15:14

NVD link : CVE-2023-45149

Mitre link : CVE-2023-45149

CVE.ORG link : CVE-2023-45149

JSON object : View

Products Affected

nextcloud

talk

CWE

CWE-307

Improper Restriction of Excessive Authentication Attempts

{"id": "CVE-2023-45149", "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 4.3, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "LOW"}, "impactScore": 1.4, "exploitabilityScore": 2.8}, {"type": "Secondary", "source": "security-advisories@github.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 4.3, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "LOW"}, "impactScore": 1.4, "exploitabilityScore": 2.8}]}, "published": "2023-10-16T20:15:15.287", "references": [{"url": "https://github.com/nextcloud/security-advisories/security/advisories/GHSA-7rf8-pqmj-rpqv", "tags": ["Vendor Advisory"], "source": "security-advisories@github.com"}, {"url": "https://github.com/nextcloud/spreed/pull/10545", "tags": ["Issue Tracking", "Patch"], "source": "security-advisories@github.com"}, {"url": "https://hackerone.com/reports/2094473", "tags": ["Permissions Required"], "source": "security-advisories@github.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "security-advisories@github.com", "description": [{"lang": "en", "value": "CWE-307"}]}], "descriptions": [{"lang": "en", "value": "Nextcloud talk is a chat module for the Nextcloud server platform. In affected versions brute force protection of public talk conversation passwords can be bypassed, as there was an endpoint validating the conversation password without registering bruteforce attempts. It is recommended that the Nextcloud Talk app is upgraded to 15.0.8, 16.0.6 or 17.1.1. There are no known workarounds for this vulnerability."}, {"lang": "es", "value": "Nextcloud talk es un m\u00f3dulo de chat para la plataforma del servidor Nextcloud. En las versiones afectadas, se puede omitir la protecci\u00f3n de fuerza bruta de las contrase\u00f1as de conversaciones p\u00fablicas, ya que hab\u00eda un endpoint que validaba la contrase\u00f1a de la conversaci\u00f3n sin registrar intentos de fuerza bruta. Se recomienda actualizar la aplicaci\u00f3n Nextcloud Talk a 15.0.8, 16.0.6 o 17.1.1. No se conocen workarounds para esta vulnerabilidad."}], "lastModified": "2023-10-20T12:12:47.093", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:nextcloud:talk:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D8F3F3ED-1738-4C2B-9DE7-754D2FC9762E", "versionEndExcluding": "15.0.8", "versionStartIncluding": "15.0.0"}, {"criteria": "cpe:2.3:a:nextcloud:talk:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2BAADB89-AADA-4F5D-B4DB-051FF789E4EA", "versionEndExcluding": "16.0.6", "versionStartIncluding": "16.0.0"}, {"criteria": "cpe:2.3:a:nextcloud:talk:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C2CA92F4-45BF-4290-8926-D4D193461D0A", "versionEndExcluding": "17.1.1", "versionStartIncluding": "17.0.0"}], "operator": "OR"}]}], "sourceIdentifier": "security-advisories@github.com"}