2 matches found
CVE-2021-44537
CVE-2021-44537 affects the ownCloud desktop client before 2.9.2. The issue stems from a server-controlled URL that can inject resources into the client, enabling remote code execution. The vulnerability enables a remote attacker to trigger code execution with no user privileges required and persi...
CVE-2020-28646
CVE-2020-28646 affects the ownCloud desktop client prior to 2.7. It allows DLL injection by loading development plugins from certain directories when present. Impact is execution of potentially untrusted plugin code via local access. Remediation: upgrade to version 2.7 or newer (or apply the PTSe...