CVE-2024-46958
CRITICALDescription
In Nextcloud Desktop Client 3.13.1 through 3.13.3 on Linux, synchronized files (between the server and client) may become world writable or world readable. This is fixed in 3.13.4.
Is your site exposed to CVE-2024-46958?
Run a free security scan — no signup, results in seconds.
CVSS v3.1 Score
Affected Products
| Vendor | Product |
|---|---|
| nextcloud | desktop |
| linux | linux_kernel |
References
Advisories & Patches
Frequently Asked Questions
What is CVE-2024-46958? +
How severe is CVE-2024-46958? +
What products are affected by CVE-2024-46958? +
How do I check if I'm vulnerable to CVE-2024-46958? +
Related Vulnerabilities
NextcloudPi is a ready to use image for Virtual Machines, Raspberry Pi, Odroid HC1, Rock64 and other boards. A command …
Nextcloud Global Site Selector is a tool which allows you to run multiple small Nextcloud instances and redirect users to …
Nextcloud Mail is the mail app for Nextcloud, a self-hosted productivity platform. When a user is trying to set up …
Nextcloud is an open source content collaboration platform. From versions 0.7.0 to before 0.7.7, 0.8.0 to before 0.8.10, 0.9.0 to …
Nextcloud Server is a self hosted personal cloud system. A recipient of a share with read&share permissions could reshare the …
Nextcloud is an open source content collaboration platform. In Nextcloud Server from versions 32.0.0 to before 32.0.9, and 33.0.0 to …