Back

CVE-2024-46958

Sept. 16, 2024, 3:30 p.m.

Awaiting Analysis
CVE has been recently published to the CVE List and has been received by the NVD.

Products

Nextcloud Desktop Client

  • 3.13.1
  • 3.13.2
  • 3.13.3

Source

cve@mitre.org

Tags

cve@mitre.org
2024-09-16
CVE-2024-46958

CVE-2024-46958 details

Published : Sept. 16, 2024, 2:15 a.m.
Last Modified : Sept. 16, 2024, 3:30 p.m.

Description

In Nextcloud Desktop Client 3.13.1 through 3.13.3 on Linux, synchronized files (between the server and client) may become world writable or world readable. This is fixed in 3.13.4.

CVSS Score

1 2 3 4 5 6 7 8 9 10

Weakness

Weakness Name Description

References

URL Source
https://github.com/nextcloud/desktop/compare/v3.13.3...v3.13.4 cve@mitre.org
https://github.com/nextcloud/desktop/issues/6863 cve@mitre.org
https://github.com/nextcloud/desktop/pull/6949 cve@mitre.org
https://github.com/nextcloud/desktop/pull/7092 cve@mitre.org
https://github.com/nextcloud/security-advisories/security/advisories cve@mitre.org
This website uses the NVD API, but is not approved or certified by it.