Vulnerabilities > Dropbox

DATE CVE VULNERABILITY TITLE RISK
2018-06-11 CVE-2018-12108 Improper Input Validation vulnerability in Dropbox Lepton 1.2.1
An issue was discovered in Dropbox Lepton 1.2.1.
local
low complexity
dropbox CWE-20
5.5
2017-09-26 CVE-2014-8889 Information Exposure vulnerability in Dropbox SDK 1.5.4/1.6.1
Dropbox SDK for Android before 1.6.2 might allow remote attackers to obtain sensitive information via crafted malware or via a drive-by download attack.
network
high complexity
dropbox CWE-200
5.3
2017-05-10 CVE-2017-8891 DEPRECATED: Use of Uninitialized Resource vulnerability in Dropbox Lepton 1.2.1
Dropbox Lepton 1.2.1 allows DoS (SEGV and application crash) via a malformed lepton file because the code does not ensure setup of a correct number of threads.
local
low complexity
dropbox CWE-1187
5.5
2017-04-05 CVE-2017-7448 Divide By Zero vulnerability in Dropbox Lepton 1.2.1
The allocate_channel_framebuffer function in uncompressed_components.hh in Dropbox Lepton 1.2.1 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a malformed JPEG image.
local
low complexity
dropbox CWE-369
5.5