Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Dropbox.exe (and QtWebEngineProcess.exe in the Web Helper) in the Dropbox desktop application 71.4.108.0 store cleartext credentials in memory upon successful login or new account creation. These are not securely freed in the running process.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Dropbox desktop application 加密问题漏洞
Vulnerability Description
Dropbox desktop application是美国Dropbox公司的一款开源的、跨平台的文件在线存储、同步、共享应用程序。 Dropbox desktop application 71.4.108.0版本中存在安全漏洞,该漏洞源于在完成登录或创建新账户时,Dropbox.exe文件(和Web Helper中的QtWebEngineProcess.exe文件)会将明文形式的凭证存储在内存中。攻击者可利用该漏洞完全控制账户。
CVSS Information
N/A
Vulnerability Type
N/A