CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2016-4900
https://notcve.org/view.php?id=CVE-2016-4900
Untrusted search path vulnerability in Evernote for Windows versions prior to 6.3 allows remote attackers to gain privileges via a Trojan horse DLL in an unspecified directory. La vulnerabilidad de ruta de búsqueda no confiable en las versiones de Evernote para Windows anteriores a la 6.3 permite a atacantes remotos obtener privilegios a través de una DLL troyanizada en un directorio no especificado. • http://jvndb.jvn.jp/jvndb/JVNDB-2016-000206 http://www.securityfocus.com/bid/93572 https://evernote.com/security/updates/#win https://jvn.jp/en/jp/JVN03251132/index.html • CWE-426: Untrusted Search Path •
CVSS: 4.6EPSS: 0%CPEs: 1EXPL: 1CVE-2013-5112
https://notcve.org/view.php?id=CVE-2013-5112
Evernote before 5.5.1 has insecure PIN storage Evernote versiones anteriores a 5.5.1, presenta un almacenamiento del PIN no seguro. • https://blog.c22.cc/advisories/cve-2013-5112-evernote-android-insecure-storage-of-pin-data-bypass-of-pin-protection https://exchange.xforce.ibmcloud.com/vulnerabilities/89735 • CWE-287: Improper Authentication •
CVSS: 7.1EPSS: 0%CPEs: 1EXPL: 0CVE-2013-5116
https://notcve.org/view.php?id=CVE-2013-5116
Evernote prior to 5.5.1 has insecure password change Evernote versiones anteriores a 5.5.1, presenta un cambio de contraseña no seguro. • https://exchange.xforce.ibmcloud.com/vulnerabilities/89734 https://packetstormsecurity.com/files/author/8433 https://www.securityfocus.com/bid/64320/info • CWE-287: Improper Authentication •