all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Hackers Can Retrieve Master Passwords from KeePass Memory

Add to bookmarks
May 18, 2023, 6:21 p.m. | Heinrich Long

RestorePrivacy restoreprivacy.com

KeePass, a widely-used open-source password manager, saves user input in retrievable memory strings, including master passwords that protect the user’s credentials. The problem stems from how KeePass handles user-typed content in forms, creating memory strings containing all the master password’s characters except for the first one. The vulnerability, now tracked as CVE-2023-32784, was discovered by …


The post Hackers Can Retrieve Master Passwords from KeePass Memory appeared first on RestorePrivacy.

characters credentials cve cve-2023-32784 forms hackers input keepass manager master master password memory password password manager passwords privacy and security news problem protect strings vulnerability

Visit resource

More from restoreprivacy.com / RestorePrivacy

Data Breach at Kaiser Permanente Affects 13.4 Million People 5 days, 7 hours ago | restoreprivacy.com
bing breach companies data +27
Europol Issues Urgent Call Against E2EE on Meta’s Platforms 1 week, 3 days ago | restoreprivacy.com
call child communication communication platforms +21
Cerebral to Pay $7 Million for Using Trackers on its Site 2 weeks, 1 day ago | restoreprivacy.com
cerebral charges consumer failure +15
DuckDuckGo Launches VPN Product Bundled With ID Protections 2 weeks, 6 days ago | restoreprivacy.com
data duckduckgo free identity +21
Google Adds Privacy-Minded Crowdsourced Tracking on ‘Find My Device’ 3 weeks, 1 day ago | restoreprivacy.com
android android devices android users app +19
Trojanized NordVPN Installer Pushed via Microsoft Bing Campaign 3 weeks, 5 days ago | restoreprivacy.com
advertising bing browser campaign +16
Google Agrees to Delete Billions of Files Collected in Chrome Incognito 4 weeks, 1 day ago | restoreprivacy.com
browser chrome chrome browser collection +13
AT&T Finally Admits Data Leak Impacting 73 Million Customers 1 month ago | restoreprivacy.com
actor amp breach current +13
Hacker Claims Breach on Real Estate Data Analytics Firm Mashvisor 1 month ago | restoreprivacy.com
actor agent analytics breach +21

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Sr. Cloud Security Engineer

@ BLOCKCHAINS | USA - Remote
View on infosec-jobs.com

Network Security (SDWAN: Velocloud) Infrastructure Lead

@ Sopra Steria | Noida, Uttar Pradesh, India
View on infosec-jobs.com

Senior Python Engineer, Cloud Security

@ Darktrace | Cambridge
View on infosec-jobs.com

Senior Security Consultant

@ Nokia | United States
View on infosec-jobs.com

Manager, Threat Operations

@ Ivanti | United States, Remote
View on infosec-jobs.com

Lead Cybersecurity Architect - Threat Modeling | AWS Cloud Security

@ JPMorgan Chase & Co. | Columbus, OH, United States
View on infosec-jobs.com
View more jobs