CVE-2020-8229
First published: Mon Aug 10 2020(Updated: )
A memory leak in the OCUtil.dll library used by Nextcloud Desktop Client 2.6.4 can lead to a DoS against the host system.
Credit: support@hackerone.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Nextcloud Desktop | <2.6.5 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this memory leak in Nextcloud Desktop Client 2.6.4?
The vulnerability ID for this memory leak is CVE-2020-8229.
What is the severity level of CVE-2020-8229?
CVE-2020-8229 has a severity level of medium.
How can the memory leak in OCUtil.dll library affect the host system?
The memory leak in OCUtil.dll library can lead to a denial-of-service (DoS) attack against the host system.
What version of Nextcloud Desktop Client is affected by CVE-2020-8229?
Nextcloud Desktop Client version 2.6.4 is affected by CVE-2020-8229.
How can I fix CVE-2020-8229?
To fix CVE-2020-8229, update Nextcloud Desktop Client to version 2.6.5 or above.
- collector/nvd-index
- agent/weakness
- agent/references
- agent/author
- agent/severity
- agent/type
- agent/description
- agent/event
- agent/softwarecombine
- agent/first-publish-date
- agent/last-modified-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/nextcloud
- canonical/nextcloud desktop