DEBIAN-CVE-2020-8227

Missing sanitization of a server response in Nextcloud Desktop Client 2.6.4 for Linux allowed a malicious Nextcloud Server to store files outside of the dedicated sync directory...

PT-2020-20039 · Nextcloud · Nextcloud Desktop Client

Name of the Vulnerable Software and Affected Versions: Nextcloud Desktop Client version 2.6.4 Description: The issue is related to missing sanitization of a server response in the Nextcloud Desktop Client, which allows a malicious Nextcloud Server to store files outside of the dedicated sync...