Описание
KeePassXC 2.7.7 allows an attacker (who has the privileges of the victim) to recover cleartext credentials via a memory dump. NOTE: the vendor disputes this because memory-management constraints make this unavoidable in the current design and other realistic designs.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | disputed |
| esm-apps/bionic | not-affected | disputed |
| esm-apps/focal | not-affected | disputed |
| esm-apps/jammy | not-affected | disputed |
| esm-apps/noble | not-affected | disputed |
| focal | not-affected | disputed |
| jammy | not-affected | disputed |
| mantic | ignored | end of life, was needs-triage |
| noble | not-affected | disputed |
| upstream | needs-triage |
Показывать по
EPSS
6.5 Medium
CVSS3
Связанные уязвимости
KeePassXC 2.7.7 allows an attacker (who has the privileges of the victim) to recover cleartext credentials via a memory dump. NOTE: the vendor disputes this because memory-management constraints make this unavoidable in the current design and other realistic designs.
KeePassXC 2.7.7 allows an attacker (who has the privileges of the vict ...
KeePassXC 2.7.7 allows attackers to recover cleartext credentials.
EPSS
6.5 Medium
CVSS3