CVE-2022-0725

Опубликовано: 10 мар. 2022

Источник: nvd

CVSS3: 7.5

CVSS2: 5

EPSS Низкий

Описание

A flaw was found in keepass. The vulnerability occurs due to logging the plain text passwords in system log and leads to an Information Exposure vulnerability. This flaw allows an attacker to interact and read sensitive passwords and logs.

Ссылки

https://bugzilla.redhat.com/show_bug.cgi?id=2052696
Issue Tracking
Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2052696
Issue Tracking
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:keepass:keepass:2.48:*:*:*:*:*:*:*

Конфигурация 2

Одно из

cpe:2.3:a:fedoraproject:extra_packages_for_enterprise_linux:7.0:*:*:*:*:*:*:*

cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*

EPSS

Процентиль: 73%

0.00769

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-200

CWE-532

Связанные уязвимости

CVE-2022-0725

CVSS3: 7.5

ubuntu

почти 4 года назад

CVE-2022-0725

CVSS3: 7.5

debian

почти 4 года назад

A flaw was found in keepass. The vulnerability occurs due to logging t ...

GHSA-4p6x-85ff-qrhc

CVSS3: 7.5

github

почти 4 года назад

A flaw was found in KeePass. The vulnerability occurs due to logging the plain text passwords in the system log and leads to an Information Exposure vulnerability. This flaw allows an attacker to interact and read sensitive passwords and logs.

EPSS

Процентиль: 73%

0.00769

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-200

CWE-532