Lucene search
Keepassrpc Security Vulnerabilities
cve
The SRP-6a implementation in Kee Vault KeePassRPC before 1.12.0 generates insufficiently random numbers, which allows remote attackers to read and modify data in the KeePass database via a WebSocket...
9.1CVSS
8.9AI Score
0.008EPSS
2020-08-03 05:15 PM
25
cve
The SRP-6a implementation in Kee Vault KeePassRPC before 1.12.0 is missing validation for a client-provided parameter, which allows remote attackers to read and modify data in the KeePass database via an A=0 WebSocket...
9.1CVSS
9AI Score
0.009EPSS
2020-08-03 05:15 PM
19