virus logo FortiClient Vulnerability

KeePass memory dump Credential Disclosure Vulnerability

description-logoDescription

In KeePass 2.x before 2.54, it is possible to recover the cleartext master password from a memory dump, even when a workspace is locked or no longer running. The memory dump can be a KeePass process dump, swap file (pagefile.sys), hibernation file (hiberfil.sys), or RAM dump of the entire system. The first character cannot be recovered. In 2.54, there is different API usage and/or random string insertion for mitigation.

affected-products-logoAffected Applications

KeePass

CVE References

CVE-2023-32784

Other References

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-32784
ID 5058
Created Jul 11, 2023
Description
Updated		 Jul 11, 2023
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon
Coverage FortiClient
OS Windows
Vendor KeePass
Patch manual
Application KeePass