CVE-2019-12171

Published: 2019-07-08T13:15Z

Last Modified: 2024-11-21T04:22Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

Dropbox.exe (and QtWebEngineProcess.exe in the Web Helper) in the Dropbox desktop application 71.4.108.0 store cleartext credentials in memory upon successful login or new account creation. These are not securely freed in the running process. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt