Vulnerabilities > Dropbox > Dropbox

DATE CVE VULNERABILITY TITLE RISK
2019-07-08 CVE-2019-12171 Use of a Broken or Risky Cryptographic Algorithm vulnerability in Dropbox 71.4.108.0
Dropbox.exe (and QtWebEngineProcess.exe in the Web Helper) in the Dropbox desktop application 71.4.108.0 store cleartext credentials in memory upon successful login or new account creation.
network
dropbox CWE-327
4.3
4.3
2018-06-20 CVE-2018-12446 Improper Authentication vulnerability in Dropbox 98.2.2
An issue was discovered in the com.dropbox.android application 98.2.2 for Android.
local
high complexity
dropbox CWE-287
3.6
3.6
2018-06-20 CVE-2018-12445 Improper Authentication vulnerability in Dropbox 98.2.2
An issue was discovered in the com.dropbox.android application 98.2.2 for Android.
high complexity
dropbox CWE-287
3.1
3.1
2018-06-13 CVE-2018-12271 Improper Authentication vulnerability in Dropbox 100.2
An issue was discovered in the com.getdropbox.Dropbox app 100.2 for iOS.
high complexity
dropbox CWE-287
6.4
6.4
2010-10-20 CVE-2010-3354 Unspecified vulnerability in Dropbox 0.7.110
dropboxd in Dropbox 0.7.110 places a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory.
local
dropbox
6.9
6.9