Missing sanitization of a server response in Nextcloud Desktop Client 2.6.4 for Linux allowed a malicious Nextcloud Server to store files outside of the dedicated sync directory.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: hackerone

Published:

Updated: 2024-08-04T09:56:27.442Z

Reserved: 2020-01-28T00:00:00

Link: CVE-2020-8227

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2020-08-21T21:15:11.967

Modified: 2024-11-21T05:38:32.633

Link: CVE-2020-8227

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.