Vulnerabilities > Dropbox

DATE CVE VULNERABILITY TITLE RISK
2017-09-26 CVE-2014-8889 Information Exposure vulnerability in Dropbox SDK 1.5.4/1.6.1
Dropbox SDK for Android before 1.6.2 might allow remote attackers to obtain sensitive information via crafted malware or via a drive-by download attack.
network
high complexity
dropbox CWE-200
2.6
2017-05-10 CVE-2017-8891 DEPRECATED: Use of Uninitialized Resource vulnerability in Dropbox Lepton 1.2.1
Dropbox Lepton 1.2.1 allows DoS (SEGV and application crash) via a malformed lepton file because the code does not ensure setup of a correct number of threads.
network
dropbox CWE-1187
4.3
2017-04-05 CVE-2017-7448 Divide By Zero vulnerability in Dropbox Lepton 1.2.1
The allocate_channel_framebuffer function in uncompressed_components.hh in Dropbox Lepton 1.2.1 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a malformed JPEG image.
network
dropbox CWE-369
4.3
2010-10-20 CVE-2010-3354 Unspecified vulnerability in Dropbox 0.7.110
dropboxd in Dropbox 0.7.110 places a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory.
local
dropbox
6.9