GCVE - cpe:2.3:a:n/a:desktop_client:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:n/a:desktop_client:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	N/A (`22f567d3-1203-528c-8f0e-3eb9c2f6ca78`)
Product	Desktop Client (`9ef45997-c4ce-5480-88c7-8e925ed92a8d`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2020-8230`	vulnerable	2026-06-08 05:27:15.327214	Details available A memory corruption vulnerability exists in NextCloud Desktop Client v2.6.4 where missing ASLR and DEP protections in for windows allowed to corrupt memory. Published: 2020-08-17T15:36:50.000Z Updated: 2024-08-04T09:56:27.973Z Open on db.gcve.eu Reference links https://hackerone.com/reports/380102 https://nextcloud.com/security/advisory/?id=NC-SA-2020-035	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-8229`	vulnerable	2026-06-08 05:27:15.326876	Details available A memory leak in the OCUtil.dll library used by Nextcloud Desktop Client 2.6.4 can lead to a DoS against the host system. Published: 2020-08-10T13:35:33.000Z Updated: 2024-08-04T09:56:27.858Z Open on db.gcve.eu Reference links https://hackerone.com/reports/588562 https://nextcloud.com/security/advisory/?id=NC-SA-2020-034	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-8227`	vulnerable	2026-06-08 05:27:15.323447	Details available Missing sanitization of a server response in Nextcloud Desktop Client 2.6.4 for Linux allowed a malicious Nextcloud Server to store files outside of the dedicated sync directory. Published: 2020-08-21T20:33:44.000Z Updated: 2024-08-04T09:56:27.442Z Open on db.gcve.eu Reference links https://hackerone.com/reports/590319 https://nextcloud.com/security/advisory/?id=NC-SA-2020-032 https://security.gentoo.org/glsa/202009-09	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-8225`	vulnerable	2026-06-08 05:27:15.319655	Details available A cleartext storage of sensitive information in Nextcloud Desktop Client 2.6.4 gave away information about used proxies and their authentication credentials. Published: 2020-09-18T20:11:32.000Z Updated: 2024-08-04T09:56:27.608Z Open on db.gcve.eu Reference links https://hackerone.com/reports/685990 https://nextcloud.com/security/advisory/?id=NC-SA-2020-031	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-8224`	vulnerable	2026-06-08 05:27:15.319314	Details available A code injection in Nextcloud Desktop Client 2.6.4 allowed to load arbitrary code when placing a malicious OpenSSL config into a fixed directory. Published: 2020-08-10T13:35:37.000Z Updated: 2024-08-04T09:56:27.643Z Open on db.gcve.eu Reference links https://hackerone.com/reports/622170 https://nextcloud.com/security/advisory/?id=NC-SA-2020-030 https://security.gentoo.org/glsa/202009-09	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-8189`	vulnerable	2026-06-08 05:27:15.129306	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-8140`	vulnerable	2026-06-08 05:27:14.947552	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.