CVE-2021-41180

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2021-41180
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-41180.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2021-41180
Related
  • GHSA-4fxr-mrw2-cq92
Published
2022-03-08T18:15:07.737Z
Modified
2026-04-02T07:35:21.314120Z
Severity
  • 6.1 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N CVSS Calculator
Summary
[none]
Details

Nextcloud talk is a self hosting messaging service. In versions prior 12.1.2 an attacker is able to control the link of a geolocation preview in the Nextcloud Talk application due to a lack of validation on the link. This could result in an open-redirect, but required user interaction. This only affected users of the Android Talk client. It is recommended that the Nextcloud Talk App is upgraded to 12.1.2. There are no known workarounds.

References

Affected packages

Git / github.com/nextcloud/talk-android

Affected ranges

Type
GIT
Repo
https://github.com/nextcloud/talk-android
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
55ffd210d100fb8036b8c11a0d5077a695f21a61
Database specific 
{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "fixed": "12.1.2"
        }
    ]
}

Affected versions

11.*
11.0.1
Other
alpha-
alpha-110000002
alpha-110000004
alpha-110000005
alpha-110000006
alpha-120000002
alpha-120000003
alpha-120000004
alpha-120000005
alpha-120000006
alpha-120000007
alpha-120000008
alpha-120000009
alpha-120000010
alpha-120000011
alpha-120000012
alpha-120000013
alpha-120000014
alpha-120000015
alpha-120000016
alpha-120020002
alpha-120020003
alpha-120020004
alpha-120020005
alpha-120020006
alpha-120020007
alpha-120030002
alpha-120030003
alpha-120030004
alpha-120030005
alpha-120030006
alpha-120030007
alpha-120030008
alpha-120030009
alpha-120030010
alpha-120030011
alpha-120030012
alpha-120030013
alpha-120030014
alpha-130000002
alpha-130010002
alpha-130010003
alpha-130010004
alpha-130010005
alpha-130010006
alpha-130010007
alpha-130010008
alpha-130010009
alpha-130010010
alpha-130010011
alpha-130010012
alpha-130010013
alpha-130010014
alpha-130010015
alpha-130010016
alpha-130010017
alpha-130010018
alpha-140010002
alpha-140010003
alpha-140010004
alpha-140010005
alpha-140010006
alpha-140010007
alpha-140010008
alpha-140010009
alpha-140010010
alpha-140010011
alpha-140010012
alpha-140020002
alpha-140020003
alpha-140020004
alpha-140020005
alpha-140020006
alpha-150000002
alpha-150000003
alpha-150000004
alpha-150000005
alpha-150000006
alpha-150010002
alpha-150010003
alpha-150010004
alpha-150010005
alpha-150010006
alpha-150010007
alpha-150010008
alpha-150010009
alpha-150010010
alpha-150010011
alpha-150010012
alpha-150020002
alpha-150020003
alpha-150020004
alpha-150020005
alpha-160000002
alpha-160000003
alpha-160000004
alpha-160000005
alpha-160000006
alpha-160000007
alpha-160010002
alpha-160010003
alpha-160010004
alpha-160010005
alpha-160010006
alpha-160010007
alpha-160010008
alpha-170000002
alpha-170100002
alpha-170100003
alpha-170100004
alpha-170100005
alpha-170100006
alpha-170100007
alpha-170100008
alpha-170100009
alpha-170100010
alpha-170100011
alpha-170100012
alpha-170100013
alpha-170100014
alpha-170100015
alpha-170100016
alpha-170100017
alpha-170100018
alpha-170100019
alpha-170100020
alpha-170200002
alpha-170200003
alpha-170200004
alpha-170200005
alpha-170200006
alpha-170200007
alpha-170200008
alpha-170200009
alpha-170200010
alpha-170200011
alpha-170200012
alpha-180000002
alpha-180000003
alpha-180010002
alpha-180010003
alpha-180010004
alpha-180010005
alpha-180010006
alpha-180010007
alpha-180010008
alpha-180010009
alpha-180010010
alpha-180010011
alpha-190000002
alpha-190000003
alpha-190010002
alpha-190010003
alpha-190010004
alpha-190010005
alpha-200000002
alpha-200010002
alpha-200010003
alpha-200010004
alpha-200010005
alpha-200010006
alpha-200010007
alpha-200010008
alpha-200010009
alpha-200010010
alpha-200010011
alpha-200010012
alpha-200010013
alpha-200010014
alpha-200010015
alpha-210000002
alpha-210000003
alpha-210000004
alpha-210000005
alpha-210000006
alpha-210000007
alpha-210000008
alpha-210000009
alpha-210000010
alpha-210010002
alpha-210010003
alpha-210010004
alpha-210010005
alpha-210010006
alpha-210010007
alpha-210010008
alpha-210010009
alpha-210010010
alpha-210010011
alpha-210010012
alpha-210010013
alpha-210010014
alpha-210010015
alpha-210010016
alpha-210010017
alpha-210010018
alpha-220000002
alpha-220000003
alpha-220000004
alpha-220000005
alpha-220000006
alpha-220000007
alpha-220000008
alpha-220000009
alpha-220000010
alpha-220000011
alpha-220000012
alpha-220000013
alpha-220000014
alpha-220000015
alpha-220000016
alpha-220000017
alpha-220000018
alpha-220000019
alpha-220000020
alpha-230000002
alpha-230000003
alpha-230000004
alpha-230000005
alpha-230000006
alpha-230000007
alpha-230000008
alpha-230000009
alpha-230000010
alpha-230000011
alpha-230000012
alpha-230000013
alpha-230000014
alpha-230000015
alpha-230000016
alpha-230000017
alpha-230000018
alpha-230000019
alpha-230000020
alpha-230000021
alpha-230000022
alpha-230000023
alpha-230000024
alpha-230000025
alpha-230010002
alpha-230010003
alpha-230010004
alpha-230010005
alpha-230010006
alpha-230010007
alpha-230010008
alpha-230010009
alpha-230010011
alpha-230010012
customer-v12.*
customer-v12.2.0
v0.*
v0.1.0
v0.1.1
v0.1.2
v0.2.0
v1.*
v1.0
v1.0.1
v1.0.10
v1.0.11
v1.0.12
v1.0.13
v1.0.14
v1.0.2
v1.0.3
v1.0.4
v1.0.5
v1.0.6
v1.0.7
v1.0.8
v1.0.9
v1.1.0
v1.1.0beta1
v1.1.0beta2
v1.1.0beta3
v1.1.0beta4
v1.1.1
v1.1.2
v1.1.3
v1.2.0beta1
v1.2.0beta2
v1.2.0beta3
v11.*
v11.0.0
v11.0.0rc1
v11.0.1
v11.1.0
v11.1.1
v11.1.2
v11.2.0rc1
v12.*
v12.1.0
v12.1.0rc1
v12.1.0rc2
v12.1.1
v12.2.0
v12.2.1
v12.3.0
v12.4.0
v13.*
v13.0.0
v13.0.0rc1
v14.*
v14.0.0
v14.0.0rc1
v14.0.0rc2
v14.0.0rc3
v14.0.0rc4
v14.0.1
v14.0.2
v14.1.0
v14.1.0rc1
v14.1.0rc2
v14.1.1
v14.1.1rc1
v14.2.0
v14.2.0.rc1
v15.*
v15.0.0
v15.0.0rc1
v15.0.0rc2
v15.0.0rc3
v15.0.0rc4
v15.0.0rc5
v15.0.1
v15.0.2
v15.0.2rc1
v15.0.3
v15.1.0
v15.1.0rc1
v15.1.0rc2
v15.1.1
v15.1.2
v15.1.2rc1
v16.*
v16.0.0
v16.0.0rc1
v16.0.0rc2
v16.0.0rc3
v16.0.0rc4
v16.0.1
v16.0.1rc1
v17.*
v17.0.0
v17.0.0rc1
v17.0.0rc2
v17.0.0rc3
v17.0.0rc4
v17.0.1
v17.0.1rc1
v17.0.2
v17.0.2rc1
v17.1.0
v17.1.0rc1
v17.1.0rc2
v17.1.1
v17.1.2
v17.1.3
v18.*
v18.0.0
v18.0.0rc1
v18.0.0rc2
v18.0.0rc3
v18.0.1
v18.1.0
v18.1.0rc1
v18.1.0rc2
v19.*
v19.0.0
v19.0.0rc1
v19.0.0rc2
v19.0.0rc3
v19.0.0rc4
v19.0.1
v19.0.1-a
v19.1.0rc1
v2.*
v2.0.0
v2.0.0beta4
v2.0.0beta5
v2.0.1
v2.0.1beta1
v2.0.1beta2
v2.0.2
v2.1.0
v2.1.0beta1
v2.1.0beta2
v2.1.0beta3
v2.1.0beta4
v2.1.0beta5
v2.1.1
v2.1.2
v20.*
v20.0.0
v20.0.0rc1
v20.0.0rc2
v20.0.1
v20.0.2
v20.0.3
v20.0.4
v20.0.5
v20.0.6
v20.1.0
v20.1.0rc1
v20.1.1
v20.1.1rc1
v21.*
v21.0.0
v21.0.0rc1
v21.0.0rc2
v21.0.0rc3
v21.0.1
v21.1.0
v21.1.0alpha03-a
v21.1.0rc1
v21.1.0rc2
v21.1.0rc3
v21.1.1
v21.1.2
v21.1.3
v21.2.0
v21.2.0rc1
v22.*
v22.0.0
v22.0.0rc1
v22.0.0rc2
v22.0.0rc3
v22.0.1
v22.0.2
v22.0.3
v22.1.0
v22.1.0rc1
v23.*
v23.0.0
v23.0.0rc1
v23.0.0rc2
v23.0.0rc3
v3.*
v3.0.0
v3.0.0beta1
v3.0.0beta10
v3.0.0beta2
v3.0.0beta3
v3.0.0beta4
v3.0.0beta5
v3.0.0beta6
v3.0.0beta7
v3.0.0beta8
v3.0.0beta9
v3.0.1
v3.1.0
v3.1.0beta1
v3.1.0beta2
v3.1.0beta3
v3.1.0beta4
v3.1.0beta5
v3.1.0beta6
v3.1.1
v3.1.2
v3.1.3
v3.2.0
v3.2.0beta1
v3.2.0beta2
v3.2.0beta3
v3.2.0beta4
v3.2.0beta5
v3.2.1
v3.2.2
v3.2.3
v3.2.4
v3.2.5
v3.2.6
v3.2.7
v3.3.0beta1
v3.3.0beta2
v3.3.0beta3
v6.*
v6.0.0
v6.0.0beta1
v6.0.0beta2
v6.0.0beta3
v6.0.0beta4
v6.0.1
v6.0.2
v6.0.3
v6.0.4
v6.0.5
v6.0.6
v6.0.6-internal
v6.0.6internal
v6.0.7
v6.0.7beta
v6.1.0
v6.1.1
v6.1.2
v6.1.3
v6.1.4
v6.1.5
v6.1.6
v7.*
v7.0.0
v7.0.0beta1
v7.0.0beta2
v7.0.0beta3
v7.0.0beta4
v7.0.0beta5
v7.0.1
v7.0.2
v7.0.3
v7.0.4
v7.0.5
v7.0.6
v7.0.7
v7.0.8
v8.*
v8.0.0
v8.0.0beta1
v8.0.0beta2
v8.0.0beta3
v8.0.0beta4
v8.0.1
v8.0.10
v8.0.2
v8.0.3
v8.0.4
v8.0.5
v8.0.6
v8.0.7
v8.0.8
v8.0.9
v8.1.0
v8.1.0rc1
v8.2.0
v9.*
v9.0.0beta1
v9.0.0beta2
v9.0.0beta3
v9.0.0beta4
v9.0.0beta5

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-41180.json"