CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2019-10884

Uniqkey Password Manager 1.14 contains a vulnerability because it fails to recognize the difference between domains and sub-domains. The vulnerability means that passwords saved for example.com will be recommended for usersite.example.com. This could lead to successful phishing campaigns and create a sense of false security.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 54.9%

CVSS Severity

CVSS v3 Score 8.8

CVSS v2 Score 4.3

References

https://vuldb.com/?id.133069
https://vuldb.com/?id.133069

Products affected by CVE-2019-10884

Uniqkey » Password Manager » Version: 1.14

cpe:2.3:a:uniqkey:password_manager:1.14

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-10884

Products

Pricing

Contact Us