What the vulnerability does

01Description

A code injection in Nextcloud Desktop Client 2.6.2 for macOS allowed to load arbitrary code when starting the client with DYLD_INSERT_LIBRARIES set in the environment.

Key dates

02Disclosure timeline

March 20, 2020 CVE published
August 4, 2024 Record updated

Related vulnerabilities

04Related CVE