CVE-2019-10884

2019-04-05T17:29:00
ID CVE-2019-10884
Type cve
Reporter cve@mitre.org
Modified 2019-04-10T18:39:00

Description

Uniqkey Password Manager 1.14 contains a vulnerability because it fails to recognize the difference between domains and sub-domains. The vulnerability means that passwords saved for example.com will be recommended for usersite.example.com. This could lead to successful phishing campaigns and create a sense of false security.