Impact
This issue may lead to sensitive information disclosure, in the case a thumbnail contains sensitive data (although the chances are low), even if the attacker app does not have the otherwise required MANAGE_DOCUMENTS permission.
Patches
It is recommended that the Nextcloud Android App is upgraded to 3.17.1.
Workarounds
None.
References
For more information
If you have any questions or comments about this advisory:
Impact
This issue may lead to sensitive information disclosure, in the case a thumbnail contains sensitive data (although the chances are low), even if the attacker app does not have the otherwise required
MANAGE_DOCUMENTSpermission.Patches
It is recommended that the Nextcloud Android App is upgraded to 3.17.1.
Workarounds
None.
References
For more information
If you have any questions or comments about this advisory: