CVE-2026-4158
- EPSS 0.01%
- Veröffentlicht 11.04.2026 00:17:00
- Zuletzt bearbeitet 13.04.2026 15:01:43
KeePassXC OpenSSL Configuration Uncontrolled Search Path Element Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of KeePassXC. An attacker must first obtain the abil...
CVE-2024-33900
- EPSS 0.12%
- Veröffentlicht 20.05.2024 21:15:09
- Zuletzt bearbeitet 13.06.2025 16:16:24
KeePassXC 2.7.7 allows an attacker (who has the privileges of the victim) to recover cleartext credentials via a memory dump. NOTE: the vendor disputes this because memory-management constraints make this unavoidable in the current design and other r...
CVE-2024-33901
- EPSS 19.49%
- Veröffentlicht 20.05.2024 21:15:09
- Zuletzt bearbeitet 13.06.2025 16:13:44
Issue in KeePassXC 2.7.7 allows an attacker (who has the privileges of the victim) to recover some passwords stored in the .kdbx database via a memory dump. NOTE: the vendor disputes this because memory-management constraints make this unavoidable in...
CVE-2023-35866
- EPSS 0.02%
- Veröffentlicht 19.06.2023 06:15:09
- Zuletzt bearbeitet 11.12.2024 17:15:13
In KeePassXC through 2.7.5, a local attacker can make changes to the Database security settings, including master password and second-factor authentication, within an authenticated KeePassXC Database session, without the need to authenticate these ch...