Memory Corruption Vulnerability in NextCloud Desktop Client v2.6.4: Exploiting ASLR and DEP Weaknesses

Memory Corruption Vulnerability in NextCloud Desktop Client v2.6.4: Exploiting ASLR and DEP Weaknesses

CVE-2020-8230 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

A memory corruption vulnerability exists in NextCloud Desktop Client v2.6.4 where missing ASLR and DEP protections in for windows allowed to corrupt memory.

Learn more about our Cis Benchmark Audit For Desktop Software.