📦 Desktop

Name: Desktop
Author: Nextcloud

by Nextcloud

🔍 What is Desktop?

Description coming soon...

🛡️ Security Overview

Click on a severity to filter vulnerabilities

⚠️ Known Vulnerabilities

CVE-2024-46958

CRITICAL CVSS 9.1 Sep 16, 2024

This vulnerability in Nextcloud Desktop Client for Linux causes synchronized files to have overly permissive file permissions (world-writable or world-readable). This allows unauthorized users on the ...

CVE-2021-22879

HIGH CVSS 8.8 Apr 14, 2021

CVE-2021-22879 is a resource injection vulnerability in Nextcloud Desktop Client that allows malicious Nextcloud servers to execute arbitrary commands on users' systems. Users who connect to untrusted...

CVE-2024-52510

MEDIUM CVSS 4.2 Nov 15, 2024

The Nextcloud Desktop Client vulnerability allows attackers to bypass signature validation when a manipulated server sends an empty initial signature. This could enable man-in-the-middle attacks or se...

CVE-2025-66549

LOW CVSS 2.4 Dec 5, 2025

Nextcloud Desktop client versions before 3.16.5 send file paths unencrypted to the server when manually locking files in end-to-end encrypted directories. This allows server administrators to see whic...