Approved changes feed: RSS · Atom

cpe:2.3:a:dropbox:dropbox:71.4.108.0:*:*:*:*:desktop:*:*

part: a version: 71.4.108.0 update: *

VendorDropbox (1facdbe9-39bb-5e43-a15f-a1694f2d36bc)
ProductDropbox (e2733264-2bd1-57ec-be1d-fbc89d106032)
Edition*
Language*
Software edition*
Target softwaredesktop
Target hardware*
Other*
NotesImported from NVD CPE 2.0 feed

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2019-12171 vulnerable 2026-06-08 05:12:38.635243 Details available
Dropbox.exe (and QtWebEngineProcess.exe in the Web Helper) in the Dropbox desktop application 71.4.108.0 store cleartext credentials in memory upon successful login or new account creation. These are not securely freed in the running process.
Published: 2019-07-08T12:44:11.000Z
Updated: 2024-08-04T23:10:30.839Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.