Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
idrive idrive vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2020-15351
IDrive prior to 6.7.3.19 on Windows installs by default to %PROGRAMFILES(X86)%\IDriveWindows with weak folder permissions granting any user modify permission (i.e., NT AUTHORITY\Authenticated Users:(OI)(CI)(M)) to the contents of the directory and its sub-folders. In addition, th...
Idrive Idrive
NA
CVE-2011-5290
The SaveToFile method in the UniBasicPack.UniTextBox ActiveX control in UniBasic100_EDA1811C.ocx in IDrive Online Backup 3.4.0 allows remote malicious users to write to arbitrary files via a pathname in the first argument.
Idrive Inc Idrive Online Backup 3.4.0
5.3
CVSSv3
CVE-2021-34687
iDrive RemotePC prior to 7.6.48 on Windows allows information disclosure. A man in the middle can recover a system's Personal Key when a client attempts to make a LAN connection. The Personal Key is transmitted over the network while only being encrypted via a substitution c...
Idrive Remotepc
3.3
CVSSv3
CVE-2021-34688
iDrive RemotePC prior to 7.6.48 on Windows allows information disclosure. A locally authenticated attacker can read an encrypted version of the system's Personal Key in world-readable %PROGRAMDATA% log files. The encryption is done using a hard-coded static key and is theref...
Idrive Remotepc
5.5
CVSSv3
CVE-2021-34689
iDrive RemotePC prior to 7.6.48 on Windows allows information disclosure. A locally authenticated attacker can read the system's Personal Key in world-readable %PROGRAMDATA% log files.
Idrive Remotepc
9.8
CVSSv3
CVE-2021-34690
iDrive RemotePC prior to 7.6.48 on Windows allows authentication bypass. A remote and unauthenticated attacker can bypass cloud authentication to connect and control a system via TCP port 5970 and 5980.
Idrive Remotepc
7.5
CVSSv3
CVE-2021-34691
iDrive RemotePC prior to 4.0.1 on Linux allows denial of service. A remote and unauthenticated attacker can disconnect a valid user session by connecting to an ephemeral port.
Idrive Remotepc
7.8
CVSSv3
CVE-2021-34692
iDrive RemotePC prior to 7.6.48 on Windows allows privilege escalation. A local and low-privileged user can force RemotePC to execute an attacker-controlled executable with SYSTEM privileges.
Idrive Remotepc
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
malicious code
camera
CVE-2023-46694
CVE-2023-43847
CVE-2023-30311
CVE-2024-27842
CVE-2024-30165
arbitrary code
CVE-2024-21683
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started