2020-08-10 13:35:37
hackerone
PUBLISHED
A code injection in Nextcloud Desktop Client 2.6.4 allowed to load arbitrary code when placing a malicious OpenSSL config into a fixed directory.