VYPR

Dropbox

by Apache Stats

CVEs (5)

  • CVE-2024-52270HigDec 5, 2024
    risk 0.53cvss epss 0.00

    User Interface (UI) Misrepresentation of Critical Information vulnerability in DropBox Sign(HelloSign) allows Content Spoofing. Displayed version does not show the layer flattened version, once download, If printed (e.g. via Google Chrome -> Examine the print preview): Will…

  • CVE-2018-12271MedJun 13, 2018
    risk 0.42cvss 6.4epss 0.00

    An issue was discovered in the com.getdropbox.Dropbox app 100.2 for iOS. The LAContext class for Biometric (TouchID) validation allows authentication bypass by overriding the LAContext return Boolean value to be "true" because the kSecAccessControlUserPresence protection…

  • CVE-2014-8889MedSep 26, 2017
    risk 0.35cvss 5.3epss 0.06

    Dropbox SDK for Android before 1.6.2 might allow remote attackers to obtain sensitive information via crafted malware or via a drive-by download attack.

  • CVE-2010-3354Oct 20, 2010
    risk 0.00cvss epss 0.00

    dropboxd in Dropbox 0.7.110 places a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory.

  • CVE-2007-0974Feb 16, 2007
    risk 0.00cvss epss 0.01

    Multiple unspecified vulnerabilities in Ian Bezanson DropBox before 0.0.4 beta have unknown impact and attack vectors, possibly related to a variable extraction vulnerability.