CVE-2020-8140

Опубликовано: 20 мар. 2020

Источник: debian

EPSS Низкий

Описание

A code injection in Nextcloud Desktop Client 2.6.2 for macOS allowed to load arbitrary code when starting the client with DYLD_INSERT_LIBRARIES set in the environment.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
nextcloud-desktop	not-affected			package

EPSS

Процентиль: 39%

0.00175

Низкий

Связанные уязвимости

CVE-2020-8140

CVSS3: 6.7

ubuntu

почти 6 лет назад

A code injection in Nextcloud Desktop Client 2.6.2 for macOS allowed to load arbitrary code when starting the client with DYLD_INSERT_LIBRARIES set in the environment.

CVE-2020-8140

CVSS3: 6.7

nvd

почти 6 лет назад

A code injection in Nextcloud Desktop Client 2.6.2 for macOS allowed to load arbitrary code when starting the client with DYLD_INSERT_LIBRARIES set in the environment.

GHSA-2xxg-j453-5c23

CVSS3: 6.7

github

больше 3 лет назад

A code injection in Nextcloud Desktop Client 2.6.2 for macOS allowed to load arbitrary code when starting the client with DYLD_INSERT_LIBRARIES set in the environment.

EPSS

Процентиль: 39%

0.00175

Низкий