Filter
AND
AND

Versions

3.0.0
4

Nextcloud Desktop ClientNextcloud Desktop client does not verify received singed certificate in end-to-end encryption

medium
6.5
First published (updated )
CVE-2023-29000

Nextcloud NextcloudNextcloud: Lack of authenticity of metadata keys allows a malicious server to gain access to E2EE folders

medium
6.9
First published (updated )
CVE-2023-28999

Nextcloud Desktop ClientNextcloud Desktop client misbehaves with E2EE when the server returns empty list of metadata keys

medium
6.7
First published (updated )
CVE-2023-28998

Nextcloud Desktop ClientNextcloud Desktop: Initialization vector reuse in E2EE allows malicious server admin to break, manipulate, access files

medium
6.7
First published (updated )
CVE-2023-28997

Nextcloud Desktop ClientSelf reflected HTML injection in Desktop client

medium
6.1
First published (updated )
CVE-2023-23942

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Nextcloud Desktop ClientCross-site Scripting (XSS) in Nexcloud Desktop Client

medium
5.4
First published (updated )
CVE-2022-39331

Nextcloud Desktop ClientCross-site scripting (XSS) in Nextcloud Desktop Client

medium
5.4
First published (updated )
CVE-2022-39332

Nextcloud Desktop ClientCross-site scripting (XSS) in Nextcloud Desktop Client

medium
6.1
First published (updated )
CVE-2022-39333

Nextcloud Desktop Clientnextcloudcmd incorrectly trusts bad TLS certificates

medium
4.7
First published (updated )
CVE-2022-39334

Debian Debian LinuxEnd-to-end encryption device setup did not verify public key

medium
6.5
First published (updated )
CVE-2021-32728

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Debian Debian LinuxNextcloud Desktop Client before 3.3.1 is vulnerable to improper certificate validation due to lack o…

medium
5.9
First published (updated )
CVE-2021-22895

Nextcloud Desktop ClientXSS

medium
5.4
First published (updated )
CVE-2020-8189

Nextcloud Desktop ClientBuffer Overflow

medium
5.5
First published (updated )
CVE-2020-8230

Nextcloud Desktop ClientA memory leak in the OCUtil.dll library used by Nextcloud Desktop Client 2.6.4 can lead to a DoS aga…

medium
5.5
First published (updated )
CVE-2020-8229

Nextcloud Desktop ClientCode Injection

medium
6.7
First published (updated )
CVE-2020-8140

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203