2 matches found
Linux Distros Unpatched Vulnerability : CVE-2020-8227
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Missing sanitization of a server response in Nextcloud Desktop Client 2.6.4 for Linux allowed a malicious Nextcloud Server to store files outside of the dedicat...
CVE-2020-8227
Nextcloud Desktop Client for Linux (2.6.4) is affected. The root cause is missing sanitization of a server response, which allows a malicious Nextcloud Server to store files outside the dedicated sync directory (directory traversal). Impact is potential leakage/exfiltration of files outside the s...