VYPR

IDrive

by Idrive Inc

CVEs (4)

  • CVE-2021-34690CriJul 15, 2021
    risk 0.64cvss 9.8epss 0.01

    iDrive RemotePC before 7.6.48 on Windows allows authentication bypass. A remote and unauthenticated attacker can bypass cloud authentication to connect and control a system via TCP port 5970 and 5980.

  • CVE-2021-34692HigJul 15, 2021
    risk 0.51cvss 7.8epss 0.00

    iDrive RemotePC before 7.6.48 on Windows allows privilege escalation. A local and low-privileged user can force RemotePC to execute an attacker-controlled executable with SYSTEM privileges.

  • CVE-2021-34691HigJul 15, 2021
    risk 0.49cvss 7.5epss 0.01

    iDrive RemotePC before 4.0.1 on Linux allows denial of service. A remote and unauthenticated attacker can disconnect a valid user session by connecting to an ephemeral port.

  • CVE-2021-34689MedJul 15, 2021
    risk 0.36cvss 5.5epss 0.00

    iDrive RemotePC before 7.6.48 on Windows allows information disclosure. A locally authenticated attacker can read the system's Personal Key in world-readable %PROGRAMDATA% log files.