Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2022-4611

Опубликовано: 19 дек. 2022
Источник: nvd
CVSS3: 4.3
CVSS3: 5.3
EPSS Низкий

Описание

A vulnerability, which was classified as problematic, was found in Click Studios Passwordstate and Passwordstate Browser Extension Chrome. This affects an unknown part. The manipulation leads to hard-coded credentials. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. It is recommended to upgrade the affected component. The identifier VDB-216273 was assigned to this vulnerability.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:clickstudios:passwordstate:*:*:*:*:*:*:*:*
Версия до 9.5 (исключая)
cpe:2.3:a:clickstudios:passwordstate:9.5:build_9500:*:*:*:-:*:*
cpe:2.3:a:clickstudios:passwordstate:9.5:build_9512:*:*:*:-:*:*
cpe:2.3:a:clickstudios:passwordstate:9.5:build_9519:*:*:*:-:*:*
cpe:2.3:a:clickstudios:passwordstate:9.5:build_9531:*:*:*:-:*:*
cpe:2.3:a:clickstudios:passwordstate:9.5:build_9533:*:*:*:-:*:*
cpe:2.3:a:clickstudios:passwordstate:9.5:build_9535:*:*:*:-:*:*
cpe:2.3:a:clickstudios:passwordstate:9.5:build_9583:*:*:*:-:*:*
Конфигурация 2
cpe:2.3:a:clickstudios:passwordstate:9.5.8.4:*:*:*:*:chrome:*:*

EPSS

Процентиль: 88%
0.03906
Низкий

4.3 Medium

CVSS3

5.3 Medium

CVSS3

Дефекты

CWE-798
CWE-798

Связанные уязвимости

github логотип

GHSA-gc6m-vvjp-f3xm

CVSS3: 5.3
github
около 3 лет назад

A vulnerability, which was classified as problematic, was found in Click Studios Passwordstate and Passwordstate Browser Extension Chrome. This affects an unknown part. The manipulation leads to hard-coded credentials. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. It is recommended to upgrade the affected component. The identifier VDB-216273 was assigned to this vulnerability.

EPSS

Процентиль: 88%
0.03906
Низкий

4.3 Medium

CVSS3

5.3 Medium

CVSS3

Дефекты

CWE-798
CWE-798