6 matches found
CVE-2022-4611
CVE-2022-4611 affects Click Studios Passwordstate and Passwordstate Browser Extension Chrome. Vulnerability details in the provided documents indicate a manipulation that results in hard-coded credentials in an unspecified part of the product, with remote initiation possible and public disclosure...
CVE-2022-4613
CVE-2022-4613 affects Click Studios Passwordstate and Passwordstate Browser Extension for Chrome, due to a vulnerability in the Browser Extension Provisioning component that leads to improper authorization. The issue can be exploited remotely and has been publicly disclosed. Affected users are ad...
CVE-2022-4610
Technical details for CVE-2022-4610 are not publicly available in the provided documents. Monitor for updates.
CVE-2020-26061
The CVE concerns ClickStudios Passwordstate (password manager) prior to 8.5 build 8501. The ResetPassword function does not verify whether the user is authenticated via security questions, allowing an unauthenticated, remote attacker to send a crafted HTTP request to /account/ResetPassword to set...
CVE-2022-4612
Technical details (affected product/version, root cause, and remediation) are not publicly provided in the supplied documents. Monitor for updates from official advisories and trusted sources.
CVE-2023-47801
CVE-2023-47801 affects Click Studios Passwordstate prior to 9811. The issue allows existing Security Administrators to misuse the System Wide API Key (when used with the PasswordHistory endpoint) to read or delete private password records, and to misuse the Copy/Move Password Record API Key to co...