← back
CVE-2020-8224

CVE-2020-8224

EPSS 0.7%CWE-94
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS EPSS 0.7%KEV nãoPoC Nuclei Metasploit Patch referenciado
Lifecycle
10 Aug 2020Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
A code injection in Nextcloud Desktop Client 2.6.4 allowed to load arbitrary code when placing a malicious OpenSSL config into a fixed directory.
Affected products
n/a · Desktop Client