cbcvebase.
CVE-2026-45266
published 2026-06-01

CVE-2026-45266: Nextcloud is an open source content collaboration platform. Prior to versions 21.1.10, 22.0.11, and 23.0.3, a low-privileged user can force other user's…

PriorityP416low3.5CVSS 3.1
AVNACLPRLUIRSUCNILAN
EPSS
0.20%
10.3th percentile
Nextcloud is an open source content collaboration platform. Prior to versions 21.1.10, 22.0.11, and 23.0.3, a low-privileged user can force other user's microphones to be muted in calls when no High-performance Backend is installed. This issue has been patched in versions 21.1.10, 22.0.11, and 23.0.3.

Affected

3 ranges
VendorProductVersion rangeFixed in
nextcloudsecurity-advisories< 21.1.1021.1.10
nextcloudsecurity-advisories< 22.0.1122.0.11
nextcloudsecurity-advisories< 23.0.323.0.3
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.