Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
454
VMScore

CVE-2016-5119

Published: 23/01/2017 Updated: 24/01/2017
CVSS v2 Base Score: 5.1 | Impact Score: 6.4 | Exploitability Score: 4.9
CVSS v3 Base Score: 7.5 | Impact Score: 5.9 | Exploitability Score: 1.6
VMScore: 454
Vector: AV:N/AC:H/Au:N/C:P/I:P/A:P
Subscribe to Keepass

Vulnerability Summary

The automatic update feature in KeePass 2.33 and previous versions allows man-in-the-middle malicious users to execute arbitrary code by spoofing the version check response and supplying a crafted update.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

keepass keepass

References

CWE-20https://sourceforge.net/p/keepass/discussion/329220/thread/e430cc12/https://packetstormsecurity.com/files/137274/KeePass-2-Man-In-The-Middle.htmlhttps://bogner.sh/2016/03/mitm-attack-against-keepass-2s-update-check/https://nvd.nist.gov
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
man-in-the-middleCVE-2024-34558CVE-2024-32674CVE-2024-34351XPath injectionCVE-2023-45866CVE-2024-25528CVE-2024-25517path traversal
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook