CVE-2020-8224
CVE-2020-8224 – Nextcloud Desktop Client (Windows) Root cause: The Nextcloud Desktop Client ships a Windows OpenSSL library (libeay32.dll) compiled without a defined openssldir. The library attempts to load c:\usr\local\ssl\openssl.cnf on startup. A low-privilege user can create the directory and...