Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
idrive idrive vulnerabilities and exploits
(subscribe to this query)
2.1
CVSSv2
CVE-2021-34689
iDrive RemotePC prior to 7.6.48 on Windows allows information disclosure. A locally authenticated attacker can read the system's Personal Key in world-readable %PROGRAMDATA% log files.
Idrive Remotepc
7.5
CVSSv2
CVE-2021-34690
iDrive RemotePC prior to 7.6.48 on Windows allows authentication bypass. A remote and unauthenticated attacker can bypass cloud authentication to connect and control a system via TCP port 5970 and 5980.
Idrive Remotepc
7.2
CVSSv2
CVE-2021-34692
iDrive RemotePC prior to 7.6.48 on Windows allows privilege escalation. A local and low-privileged user can force RemotePC to execute an attacker-controlled executable with SYSTEM privileges.
Idrive Remotepc
2.9
CVSSv2
CVE-2021-34687
iDrive RemotePC prior to 7.6.48 on Windows allows information disclosure. A man in the middle can recover a system's Personal Key when a client attempts to make a LAN connection. The Personal Key is transmitted over the network while only being encrypted via a substitution c...
Idrive Remotepc
5
CVSSv2
CVE-2021-34691
iDrive RemotePC prior to 4.0.1 on Linux allows denial of service. A remote and unauthenticated attacker can disconnect a valid user session by connecting to an ephemeral port.
Idrive Remotepc
2.1
CVSSv2
CVE-2021-34688
iDrive RemotePC prior to 7.6.48 on Windows allows information disclosure. A locally authenticated attacker can read an encrypted version of the system's Personal Key in world-readable %PROGRAMDATA% log files. The encryption is done using a hard-coded static key and is theref...
Idrive Remotepc
7.2
CVSSv2
CVE-2020-15351
IDrive prior to 6.7.3.19 on Windows installs by default to %PROGRAMFILES(X86)%\IDriveWindows with weak folder permissions granting any user modify permission (i.e., NT AUTHORITY\Authenticated Users:(OI)(CI)(M)) to the contents of the directory and its sub-folders. In addition, th...
Idrive Idrive
6.4
CVSSv2
CVE-2011-5290
The SaveToFile method in the UniBasicPack.UniTextBox ActiveX control in UniBasic100_EDA1811C.ocx in IDrive Online Backup 3.4.0 allows remote malicious users to write to arbitrary files via a pathname in the first argument.
Idrive Inc Idrive Online Backup 3.4.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
man-in-the-middle
CVE-2024-34558
CVE-2024-32674
CVE-2024-34351
XPath injection
CVE-2023-45866
CVE-2024-25528
CVE-2024-25517
path traversal
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started