Vulnerabilities > Owncloud > Owncloud Desktop Client > 2.6.2

DATE CVE VULNERABILITY TITLE RISK
2022-01-15 CVE-2021-44537 Injection vulnerability in multiple products
ownCloud owncloud/client before 2.9.2 allows Resource Injection by a server into the desktop client via a URL, leading to remote code execution.
local
low complexity
owncloud fedoraproject CWE-74
7.8
7.8
2021-02-26 CVE-2020-28646 Uncontrolled Search Path Element vulnerability in Owncloud Desktop Client
ownCloud owncloud/client before 2.7 allows DLL Injection.
local
low complexity
owncloud CWE-427
7.8
7.8