ZDI-24-677: (0Day) Dropbox Desktop Folder Sharing Mark-of-the-Web Bypass Vulnerability - Cyber Security News

Read Time:18 Second

This vulnerability allows remote attackers to bypass the Mark-of-the-Web protection mechanism on affected installations of Dropbox Desktop. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The ZDI has assigned a CVSS rating of 8.8. The following CVEs are assigned: CVE-2024-5924.

More Stories

GLSA 202409-07: Rust: Multiple Vulnerabilities

Post Content Read More

September 22, 2024

GLSA 202409-06: file: Stack Buffer Overread

Post Content Read More

September 22, 2024

GLSA 202409-05: PJSIP: Heap Buffer Overflow

Post Content Read More

September 22, 2024

GLSA 202409-04: calibre: Multiple Vulnerabilities

Post Content Read More

September 22, 2024

GLSA 202409-03: GPL Ghostscript: Multiple Vulnerabilities

Post Content Read More

September 22, 2024

GLSA 202409-02: PostgreSQL: Privilege Escalation

Post Content Read More

September 22, 2024