CVE-2024-52270
HIGH EXPLOITEDDropBox Sign(HelloSign) <2024-12-04 - Content Spoofing
Title source: llmExploitation Summary
CVE-2024-52270 has been observed exploited in the wild (reported by VulnCheck KEV).
Description
User Interface (UI) Misrepresentation of Critical Information vulnerability in DropBox Sign(HelloSign) allows Content Spoofing. Displayed version does not show the layer flattened version, once download, If printed (e.g. via Google Chrome -> Examine the print preview): Will render the vulnerability only, not all layers are flattened. This issue affects DropBox Sign(HelloSign): through 2024-12-04.
References (6)
Core 6
Core References
Various Sources vdb-entry
https://www.vulsec.org/advisories
Various Sources exploit
https://www.loom.com/share/48f63594e14c49e19840ad9cb7d60453?sid=816c6afa-0b67-4b0b-98ff-d5c58d464038
Various Sources exploit
https://new.space/s/ZuHoujvkjdzfY7Uihah7Yg#SKWLU_g2Cihfj4qsq9XNy6F4saxVAzD876PujiDOYfs
Various Sources exploit
https://drive.proton.me/urls/Z6DHXNRZQC#jkfO38rjOiOj
Various Sources product
https://sign.dropbox.com/
Various Sources product
https://app.hellosign.com/
Scores
CVSS v4
8.2
EPSS
0.0019
EPSS Percentile
8.5%
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:N/VI:H/VA:N/SC:N/SI:H/SA:N/AU:Y/U:Red
CISA SSVC
Vulnrichment
Exploitation
poc
Automatable
no
Technical Impact
partial
Details
VulnCheck KEV
2024-12-05
CWE
CWE-451
Status
published
Products (1)
DropBox(HelloSign)/DropBox Sign
< 2024-12-04
Published
Dec 05, 2024
Tracked Since
Feb 18, 2026