CVE-2024-37885 | Nextcloud Desktop Client up to 3.11.x on macOS DYLD_INSERT_LIBRARIES code injection (GHSA-4mf7-v63m-99p7)

Inserito da Angelo Barbosa | Giu 14, 2024 | CVE

A vulnerability was found in Nextcloud Desktop Client up to 3.11.x on macOS and classified as problematic. This issue affects some unknown processing. The manipulation of the argument DYLD_INSERT_LIBRARIES leads to code injection.

The identification of this vulnerability is CVE-2024-37885. It is possible to launch the attack on the local host. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-37885 | Nextcloud Desktop Client up to 3.11.x on macOS DYLD_INSERT_LIBRARIES code injection (GHSA-4mf7-v63m-99p7)

Post correlati

CVE-2023-51695 | WPEverest Everest Forms Plugin up to 2.0.4.1 on WordPress cross site scripting

CVE-2024-44797 | Gazelle 63b3370 enable_requests.php view cross site scripting (ID 130)

CVE-2023-51510 | Atlas Gondal Export Media URLs Plugin up to 1.0 on WordPress cross-site request forgery

CVE-2024-1058 | SiteOrigin Widgets Bundle Plugin up to 1.58.3 on WordPress cross site scripting