VYPR

Dropbox desktop application

by Apache Stats

CVEs (2)

  • CVE-2024-5924Jun 13, 2024
    risk 0.00cvss epss 0.01

    Dropbox Desktop Folder Sharing Mark-of-the-Web Bypass Vulnerability. This vulnerability allows remote attackers to bypass the Mark-of-the-Web protection mechanism on affected installations of Dropbox Desktop. User interaction is required to exploit this vulnerability in that the…

  • CVE-2019-12171Jul 8, 2019
    risk 0.00cvss epss 0.01

    Dropbox.exe (and QtWebEngineProcess.exe in the Web Helper) in the Dropbox desktop application 71.4.108.0 store cleartext credentials in memory upon successful login or new account creation. These are not securely freed in the running process.