Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
keepass keepass vulnerabilities and exploits
(subscribe to this query)
6.9
CVSSv2
CVE-2010-5200
Untrusted search path vulnerability in KeePass Password Safe prior to 1.18 allows local users to gain privileges via a Trojan horse DLL in the current working directory, as demonstrated by a directory that contains a .kdb file. NOTE: some of these details are obtained from third ...
Keepass Keepass
5.1
CVSSv2
CVE-2016-5119
The automatic update feature in KeePass 2.33 and previous versions allows man-in-the-middle malicious users to execute arbitrary code by spoofing the version check response and supplying a crafted update.
Keepass Keepass
NA
CVE-2023-32784
In KeePass 2.x prior to 2.54, it is possible to recover the cleartext master password from a memory dump, even when a workspace is locked or no longer running. The memory dump can be a KeePass process dump, swap file (pagefile.sys), hibernation file (hiberfil.sys), or RAM dump of...
Keepass Keepass
23 Github repositories
NA
CVE-2023-24055
KeePass up to and including 2.53 (in a default installation) allows an attacker, who has write access to the XML configuration file, to obtain the cleartext passwords by adding an export trigger. NOTE: the vendor's position is that the password database is not intended to be...
Keepass Keepass
10 Github repositories
6.8
CVSSv2
CVE-2019-20184
KeePass 2.4.1 allows CSV injection in the title field of a CSV export.
Keepass Keepass 2.4.1
5
CVSSv2
CVE-2017-1000066
The entry details view function in KeePass version 1.32 inadvertently decrypts certain database entries into memory, which may result in the disclosure of sensitive information.
Keepass Keepass 1.32
6.9
CVSSv2
CVE-2010-5196
Untrusted search path vulnerability in KeePass Password Safe prior to 2.13 allows local users to gain privileges via a Trojan horse DwmApi.dll file in the current working directory, as demonstrated by a directory that contains a .kdbx file. NOTE: some of these details are obtaine...
Keepass Password Safe
Keepass Password Safe 1.6
5
CVSSv2
CVE-2022-0725
A flaw was found in keepass. The vulnerability occurs due to logging the plain text passwords in system log and leads to an Information Exposure vulnerability. This flaw allows an malicious user to interact and read sensitive passwords and logs.
Keepass Keepass 2.48
Fedoraproject Fedora 35
Fedoraproject Extra Packages For Enterprise Linux 7.0
1 Github repository
7.5
CVSSv2
CVE-2018-1000835
KeePassDX version <= 2.5.0.0beta17 contains a XML External Entity (XXE) vulnerability in kdbx file parser that can result in Disclosure of confidential data, denial of service, SSRF, port scanning.
Keepassdx Keepass Dx 2.5.0.0
6.4
CVSSv2
CVE-2020-16271
The SRP-6a implementation in Kee Vault KeePassRPC prior to 1.12.0 generates insufficiently random numbers, which allows remote malicious users to read and modify data in the KeePass database via a WebSocket connection.
Kee Keepassrpc
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
adobe
CVE-2024-9201
CVE-2024-9680
CVE-2024-9808
CVE-2024-9794
dos
remote attackers
commerce
CVE-2024-45129
overflow
CVE-2024-43572
Home
/
Search Results
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »