Clickstudios

Passwordstate

16 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
3.2

CVE-2025-59453

  • EPSS 0.02%
  • Veröffentlicht 16.09.2025 00:00:00
  • Zuletzt bearbeitet 16.09.2025 12:49:16

Click Studios Passwordstate before 9.9 Build 9972 has a potential authentication bypass for Passwordstate emergency access. By using a crafted URL while on the Emergency Access web page, an unauthorized person can gain access to the Passwordstate Adm...

8.8

CVE-2024-54124

  • EPSS 0.1%
  • Veröffentlicht 29.11.2024 04:15:04
  • Zuletzt bearbeitet 29.11.2024 19:15:10

In Click Studios Passwordstate before build 9920, there is a potential permission escalation on the edit folder screen.

6.5

CVE-2024-39337

  • EPSS 0.08%
  • Veröffentlicht 24.06.2024 00:15:09
  • Zuletzt bearbeitet 21.11.2024 20:15:42

Click Studios Passwordstate Core before 9.8 build 9858 allows Authentication Bypass.

4.7

CVE-2023-47801

  • EPSS 0.08%
  • Veröffentlicht 13.11.2023 09:15:25
  • Zuletzt bearbeitet 21.11.2024 08:30:49

An issue was discovered in Click Studios Passwordstate before 9811. Existing users (Security Administrators) could use the System Wide API Key to read or delete private password records when specifically used with the PasswordHistory API endpoint. It...

3.5

CVE-2023-43295

  • EPSS 0.38%
  • Veröffentlicht 31.10.2023 21:15:08
  • Zuletzt bearbeitet 21.11.2024 08:23:57

Cross Site Request Forgery vulnerability in Click Studios (SA) Pty Ltd Passwordstate v.Build 9785 and before allows a local attacker to execute arbitrary code via a crafted request.

5.5

CVE-2022-4610

Exploit
  • EPSS 0.07%
  • Veröffentlicht 19.12.2022 15:15:10
  • Zuletzt bearbeitet 21.11.2024 07:35:35

A vulnerability, which was classified as problematic, has been found in Click Studios Passwordstate and Passwordstate Browser Extension Chrome. Affected by this issue is some unknown functionality. The manipulation leads to risky cryptographic algori...

5.3

CVE-2022-4611

Exploit
  • EPSS 3.91%
  • Veröffentlicht 19.12.2022 15:15:10
  • Zuletzt bearbeitet 21.11.2024 07:35:35

A vulnerability, which was classified as problematic, was found in Click Studios Passwordstate and Passwordstate Browser Extension Chrome. This affects an unknown part. The manipulation leads to hard-coded credentials. It is possible to initiate the ...

6.5

CVE-2022-4612

Exploit
  • EPSS 0.21%
  • Veröffentlicht 19.12.2022 15:15:10
  • Zuletzt bearbeitet 21.11.2024 07:35:35

A vulnerability has been found in Click Studios Passwordstate and Passwordstate Browser Extension Chrome and classified as problematic. This vulnerability affects unknown code. The manipulation leads to insufficiently protected credentials. The attac...

6.5

CVE-2022-4613

Exploit
  • EPSS 0.26%
  • Veröffentlicht 19.12.2022 15:15:10
  • Zuletzt bearbeitet 21.11.2024 07:35:36

A vulnerability was found in Click Studios Passwordstate and Passwordstate Browser Extension Chrome and classified as critical. This issue affects some unknown processing of the component Browser Extension Provisioning. The manipulation leads to impr...

7.5

CVE-2022-3875

Exploit
  • EPSS 0.1%
  • Veröffentlicht 19.12.2022 11:15:10
  • Zuletzt bearbeitet 21.11.2024 07:20:24

A vulnerability classified as critical was found in Click Studios Passwordstate and Passwordstate Browser Extension Chrome. This vulnerability affects unknown code of the component API. The manipulation leads to authentication bypass by assumed-immut...