15 matches found
Linux Distros Unpatched Vulnerability : CVE-2023-32784
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In KeePass 2.x before 2.54, it is possible to recover the cleartext master password from a memory dump, even when a workspace is locked or no longer running. Th...
openSUSE: Security Advisory for keepass (openSUSE-SU-2023:0157-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Updated keepass packages fix security vulnerability
Allows an attacker, who has write access to the XML configuration file, to obtain the cleartext passwords by adding an export trigger. Disputed by vendor due to level of access required. CVE-2023-24055 Possible to recover the cleartext master password from a memory dump, even when a workspace is...
Security update for keepass (important)
openSUSE Security Update: Security update for keepass Announcement ID: openSUSE-SU-2023:0163-1 Rating: important References: 1211397 Cross-References: CVE-2023-32784 CVSS scores: CVE-2023-32784 NVD : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N Affected Products: openSUSE Backports SLE-15-SP5...
openSUSE 15 Security Update : keepass (openSUSE-SU-2023:0157-1)
The remote openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the openSUSE- SU-2023:0157-1 advisory. - In KeePass 2.x before 2.54, it is possible to recover the cleartext master password from a memory dump, even when a workspace is locked or no longer...
Security update for keepass (important)
openSUSE Security Update: Security update for keepass Announcement ID: openSUSE-SU-2023:0157-1 Rating: important References: 1211397 Cross-References: CVE-2023-32784 CVSS scores: CVE-2023-32784 NVD : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N Affected Products: openSUSE Backports SLE-15-SP4...
Exploitable and unpatched KeePass vulnerability: everything you need to know
Detect and mitigate CVE-2023-32784, a vulnerability in KeePass which allows the extraction of the master password in cleartext from the application's memory...
KeePass Exploit Allows Attackers to Recover Master Passwords from Memory
A proof-of-concept PoC has been made available for a security flaw impacting the KeePass password manager that could be exploited to recover a victim's master password in cleartext under specific circumstances. The issue, tracked as CVE-2023-32784, impacts KeePass versions 2.x for Windows, Linux,...
KeePass Exploit Allows Attackers to Recover Master Passwords from Memory
A proof-of-concept PoC has been made available for a security flaw impacting the KeePass password manager that could be exploited to recover a victim's master password in cleartext under specific circumstances. The issue, tracked as CVE-2023-32784, impacts KeePass versions 2.x for Windows, Linux,...
Exploit for Cleartext Transmission of Sensitive Information in Keepass
KeePass 2.53/cmdline files and store the pid of ones with t...
CVE-2023-32784
creationtimestamp| type| source ---|---|--- 2023-05-15 12:29:24+00:00| seen| https://t.me/cibsecurity/64080 2023-05-17 11:40:29+00:00| published-proof-of-concept| https://t.me/cKure/10999 2023-05-17 14:24:42+00:00| published-proof-of-concept| https://t.me/CyberSecurityIL/23472 2023-05-17...
CVE-2023-32784
In KeePass 2.x before 2.54, it is possible to recover the cleartext master password from a memory dump, even when a workspace is locked or no longer running. The memory dump can be a KeePass process dump, swap file pagefile.sys, hibernation file hiberfil.sys, or RAM dump of the entire system. The...
CVE-2023-32784
In KeePass 2.x before 2.54, it is possible to recover the cleartext master password from a memory dump, even when a workspace is locked or no longer running. The memory dump can be a KeePass process dump, swap file pagefile.sys, hibernation file hiberfil.sys, or RAM dump of the entire system. The...
CVE-2023-32784
KeePass 2.x before 2.54 is vulnerable to master password exposure from memory dumps (KeePass process dumps, pagefile.sys, hibernation files, or RAM). The first character cannot be recovered, but subsequent characters may be revealed due to memory handling in KeePass. KeePass 2.54 introduces mitig...
CVE-2023-32784
In KeePass 2.x before 2.54, it is possible to recover the cleartext master password from a memory dump, even when a workspace is locked or no longer running. The memory dump can be a KeePass process dump, swap file pagefile.sys, hibernation file hiberfil.sys, or RAM dump of the entire system. The...