heisec@social.heise.de - BSI warnt vor KeePassXC-Schwachstellen

Das BSI warnt vor Schwachstellen im Passwort-Manager KeePassXC. Angreifer können Dateien oder das Master-Passwort ohne Authentifzierungsrückfrage manipulieren.

[The BSI warns of vulnerabilities in the password manager KeePassXC. Attackers can manipulate files or the master password without authentication confirmation.]

  • Irisos@lemmy.umainfo.live
    link
    fedilink
    English
    arrow-up
    0
    ·
    1 year ago

    This is also the vulnerability that made many people delete Keepass 2 for XC many months ago so it is very strange that they make an article that sounds like it’s a new vulnerability.

    • dog@suppo.fi
      link
      fedilink
      English
      arrow-up
      4
      ·
      1 year ago

      Wrong vulnerability. The discovered one is CVE-2023-35866, which is still pending verification.