ГлавнаяУязвимости → CVE-2024-46958
9.1критическая

CVE-2024-46958

Описание

In Nextcloud Desktop Client 3.13.1 through 3.13.3 on Linux, synchronized files (between the server and client) may become world writable or world readable. This is fixed in 3.13.4.

Затрагиваемое ПО
Nextcloud DesktopLinux Linux kernel
CVSS
Балл9.1 — критическая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Источники
https://github.com/nextcloud/desktop/compare/v3.13.3...v3.13.4https://github.com/nextcloud/desktop/issues/6863https://github.com/nextcloud/desktop/pull/6949https://github.com/nextcloud/desktop/pull/7092https://github.com/nextcloud/security-advisories/security/advisories