vulnerability
SUSE: CVE-2022-39333: SUSE Linux Security Advisory
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 6 | (AV:N/AC:M/Au:N/C:P/I:P/A:N) | Nov 25, 2022 | Apr 13, 2023 | Jan 28, 2025 |
Severity
6
CVSS
(AV:N/AC:M/Au:N/C:P/I:P/A:N)
Published
Nov 25, 2022
Added
Apr 13, 2023
Modified
Jan 28, 2025
Description
Nexcloud desktop is the Desktop sync client for Nextcloud. An attacker can inject arbitrary HyperText Markup Language into the Desktop Client application. It is recommended that the Nextcloud Desktop client is upgraded to 3.6.1. There are no known workarounds for this issue.
Solutions
suse-upgrade-caja-extension-nextcloudsuse-upgrade-cloudproviders-extension-nextcloudsuse-upgrade-libnextcloudsync-develsuse-upgrade-libnextcloudsync0suse-upgrade-nautilus-extension-nextcloudsuse-upgrade-nemo-extension-nextcloudsuse-upgrade-nextcloud-desktopsuse-upgrade-nextcloud-desktop-docsuse-upgrade-nextcloud-desktop-dolphinsuse-upgrade-nextcloud-desktop-lang
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.