Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistHackeroneCVELIST:CVE-2020-8227
HistoryAug 21, 2020 - 8:33 p.m.

CVE-2020-8227

2020-08-2120:33:44
CWE-22
hackerone
www.cve.org
1

6.6 Medium

AI Score

Confidence

High

0.013 Low

EPSS

Percentile

85.8%

JSON

Missing sanitization of a server response in Nextcloud Desktop Client 2.6.4 for Linux allowed a malicious Nextcloud Server to store files outside of the dedicated sync directory.

CNA Affected

[
  {
    "product": "Desktop Client",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "2.6.5"
      }
    ]
  }
]

Related

debiancve 1
cve 1
prion 1
nvd 1
osv 1
nextcloud 1
ubuntucve 1
hackerone 1
gentoo 1
nessus 1
debiancve
debiancve
CVE-2020-8227
2020-08-21 21:15:11
cve
cve
CVE-2020-8227
2020-08-21 21:15:11
prion
prion
Directory traversal
2020-08-21 21:15:00
nvd
nvd
CVE-2020-8227
2020-08-21 21:15:11
osv
osv
CVE-2020-8227
2020-08-21 21:15:11
nextcloud
nextcloud
Linux client is vulnerable to directory traversal when downloading files (NC-SA-2020-032)
2020-07-10 00:00:00
ubuntucve
ubuntucve
CVE-2020-8227
2020-08-21 00:00:00
hackerone
hackerone
Nextcloud: Linux client is vulnerable to directory traversal when downloading files
2019-05-26 04:50:06
gentoo
gentoo
Nextcloud Desktop Sync client: Multiple vulnerabilities
2020-09-13 00:00:00
nessus
nessus
GLSA-202009-09 : Nextcloud Desktop Sync client: Multiple vulnerabilities
2020-09-14 00:00:00

6.6 Medium

AI Score

Confidence

High

0.013 Low

EPSS

Percentile

85.8%

JSON
Related for CVELIST:CVE-2020-8227
debiancve1cve1prion1nvd1osv1nextcloud1ubuntucve1hackerone1gentoo1nessus1