AVG-1810 log
Package | nextcloud-client |
Status | Fixed |
Severity | Medium |
Type | arbitrary code execution |
Affected | 3.1.2-1 |
Fixed | 3.1.3-1 |
Current | 2:3.14.3-1 [extra] |
Ticket | None |
Created | Tue Apr 13 08:40:59 2021 |
Issue | Severity | Remote | Type | Description |
---|---|---|---|---|
CVE-2021-22879 | Medium | Yes | Arbitrary code execution | Missing validation of URLs in Nextcloud Desktop Client 3.1.2 and earlier allowed a malicious server to execute code on the client. User interaction was required. |