CVE-2020-8140
published 2020-03-20CVE-2020-8140: A code injection in Nextcloud Desktop Client 2.6.2 for macOS allowed to load arbitrary code when starting the client with DYLD_INSERT_LIBRARIES set in the…
medium6.7CVSS 3.1
AVLACLPRHUINSUCHIHAH
A code injection in Nextcloud Desktop Client 2.6.2 for macOS allowed to load arbitrary code when starting the client with DYLD_INSERT_LIBRARIES set in the environment.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | nextcloud-desktop | — | — |
| nextcloud | desktop | < 2.6.3 | 2.6.3 |