Filters
Nextcloud DesktopIn Nextcloud Desktop Client 3.13.1 through 3.13.3 on Linux, synchronized files (between the server a…
9.1
First published (updated )
Nextcloud DesktopCode injection in Nextcloud Desktop Client for macOS
7.8
First published (updated )
Nextcloud DesktopNextcloud Desktop client does not verify received singed certificate in end-to-end encryption
6.5
First published (updated )
Nextcloud NextcloudNextcloud: Lack of authenticity of metadata keys allows a malicious server to gain access to E2EE folders
6.9
First published (updated )
Nextcloud DesktopNextcloud Desktop client misbehaves with E2EE when the server returns empty list of metadata keys
6.7
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Nextcloud DesktopNextcloud Desktop: Initialization vector reuse in E2EE allows malicious server admin to break, manipulate, access files
6.7
First published (updated )
Nextcloud DesktopSelf reflected HTML injection in Desktop client
6.1
First published (updated )
Nextcloud DesktopNextcloud Deck Desktop Client is vulnerable to Cross-Site Request Forgery (CSRF) via malicious link
8.8
First published (updated )
Nextcloud DesktopCross-site Scripting (XSS) in Nexcloud Desktop Client
5.4
First published (updated )
Nextcloud DesktopCross-site scripting (XSS) in Nextcloud Desktop Client
5.4
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Nextcloud DesktopCross-site scripting (XSS) in Nextcloud Desktop Client
6.1
First published (updated )
Nextcloud Desktopnextcloudcmd incorrectly trusts bad TLS certificates
4.7
First published (updated )
Nextcloud DesktopNextcloud Desktop vulnerable to code injection via malicious link
7.8
First published (updated )
Nextcloud DesktopUntrusted Search Path in Nextcloud Desktop Client
7.3
First published (updated )
Debian Debian LinuxEnd-to-end encryption device setup did not verify public key
6.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Nextcloud DesktopNextcloud Desktop Client prior to 3.1.3 is vulnerable to resource injection by way of missing valida…
8.8
First published (updated )
Nextcloud DesktopA cleartext storage of sensitive information in Nextcloud Desktop Client 2.6.4 gave away information…
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Nextcloud DesktopA memory leak in the OCUtil.dll library used by Nextcloud Desktop Client 2.6.4 can lead to a DoS aga…
5.5
First published (updated )