CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2020-8229
https://notcve.org/view.php?id=CVE-2020-8229
A memory leak in the OCUtil.dll library used by Nextcloud Desktop Client 2.6.4 can lead to a DoS against the host system. Una pérdida de memoria en la biblioteca OCUtil.dll usada por Nextcloud Desktop Client versión 2.6.4, puede conllevar una DoS en el sistema host • https://hackerone.com/reports/588562 https://nextcloud.com/security/advisory/?id=NC-SA-2020-034 • CWE-400: Uncontrolled Resource Consumption CWE-401: Missing Release of Memory after Effective Lifetime •
CVSS: 6.7EPSS: 0%CPEs: 2EXPL: 1CVE-2020-8140
https://notcve.org/view.php?id=CVE-2020-8140
A code injection in Nextcloud Desktop Client 2.6.2 for macOS allowed to load arbitrary code when starting the client with DYLD_INSERT_LIBRARIES set in the environment. Una inyección de código en Nextcloud Desktop Client versión 2.6.2 para macOS, permite cargar código arbitrario cuando se inicia el cliente con DYLD_INSERT_LIBRARIES establecido en el entorno. • https://hackerone.com/reports/633266 https://nextcloud.com/security/advisory/?id=NC-SA-2020-016 • CWE-94: Improper Control of Generation of Code ('Code Injection') •