Dropbox
Monthly
Dropbox.exe (and QtWebEngineProcess.exe in the Web Helper) in the Dropbox desktop application 71.4.108.0 store cleartext credentials in memory upon successful login or new account creation. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.
An issue was discovered in the com.dropbox.android application 98.2.2 for Android. Rated low severity (CVSS 3.6). No vendor patch available.
An issue was discovered in the com.dropbox.android application 98.2.2 for Android. Rated low severity (CVSS 3.1), this vulnerability is no authentication required. No vendor patch available.
An issue was discovered in the com.getdropbox.Dropbox app 100.2 for iOS. Rated medium severity (CVSS 6.4), this vulnerability is no authentication required. No vendor patch available.
Dropbox.exe (and QtWebEngineProcess.exe in the Web Helper) in the Dropbox desktop application 71.4.108.0 store cleartext credentials in memory upon successful login or new account creation. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.
An issue was discovered in the com.dropbox.android application 98.2.2 for Android. Rated low severity (CVSS 3.6). No vendor patch available.
An issue was discovered in the com.dropbox.android application 98.2.2 for Android. Rated low severity (CVSS 3.1), this vulnerability is no authentication required. No vendor patch available.
An issue was discovered in the com.getdropbox.Dropbox app 100.2 for iOS. Rated medium severity (CVSS 6.4), this vulnerability is no authentication required. No vendor patch available.