Vulnerability Details CVE-2023-32784
In KeePass 2.x before 2.54, it is possible to recover the cleartext master password from a memory dump, even when a workspace is locked or no longer running. The memory dump can be a KeePass process dump, swap file (pagefile.sys), hibernation file (hiberfil.sys), or RAM dump of the entire system. The first character cannot be recovered. In 2.54, there is different API usage and/or random string insertion for mitigation.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.714
EPSS Ranking 98.6%
CVSS Severity
CVSS v3 Score 7.5
References
- https://github.com/keepassxreboot/keepassxc/discussions/9433
- https://github.com/vdohney/keepass-password-dumper
- https://sourceforge.net/p/keepass/discussion/329220/thread/f3438e6283/
- https://github.com/keepassxreboot/keepassxc/discussions/9433
- https://github.com/vdohney/keepass-password-dumper
- https://sourceforge.net/p/keepass/discussion/329220/thread/f3438e6283/
Products affected by CVE-2023-32784
-
cpe:2.3:a:keepass:keepass:2.00
-
cpe:2.3:a:keepass:keepass:2.01
-
cpe:2.3:a:keepass:keepass:2.02
-
cpe:2.3:a:keepass:keepass:2.03
-
cpe:2.3:a:keepass:keepass:2.04
-
cpe:2.3:a:keepass:keepass:2.05
-
cpe:2.3:a:keepass:keepass:2.06
-
cpe:2.3:a:keepass:keepass:2.07
-
cpe:2.3:a:keepass:keepass:2.08
-
cpe:2.3:a:keepass:keepass:2.09
-
cpe:2.3:a:keepass:keepass:2.10
-
cpe:2.3:a:keepass:keepass:2.11
-
cpe:2.3:a:keepass:keepass:2.12
-
cpe:2.3:a:keepass:keepass:2.13
-
cpe:2.3:a:keepass:keepass:2.14
-
cpe:2.3:a:keepass:keepass:2.15
-
cpe:2.3:a:keepass:keepass:2.16
-
cpe:2.3:a:keepass:keepass:2.17
-
cpe:2.3:a:keepass:keepass:2.18
-
cpe:2.3:a:keepass:keepass:2.19
-
cpe:2.3:a:keepass:keepass:2.20
-
cpe:2.3:a:keepass:keepass:2.20.1
-
cpe:2.3:a:keepass:keepass:2.21
-
cpe:2.3:a:keepass:keepass:2.22
-
cpe:2.3:a:keepass:keepass:2.23
-
cpe:2.3:a:keepass:keepass:2.24
-
cpe:2.3:a:keepass:keepass:2.25
-
cpe:2.3:a:keepass:keepass:2.26
-
cpe:2.3:a:keepass:keepass:2.27
-
cpe:2.3:a:keepass:keepass:2.28
-
cpe:2.3:a:keepass:keepass:2.29
-
cpe:2.3:a:keepass:keepass:2.30
-
cpe:2.3:a:keepass:keepass:2.31
-
cpe:2.3:a:keepass:keepass:2.32
-
cpe:2.3:a:keepass:keepass:2.33
-
cpe:2.3:a:keepass:keepass:2.34
-
cpe:2.3:a:keepass:keepass:2.35
-
cpe:2.3:a:keepass:keepass:2.36
-
cpe:2.3:a:keepass:keepass:2.37
-
cpe:2.3:a:keepass:keepass:2.38
-
cpe:2.3:a:keepass:keepass:2.39
-
cpe:2.3:a:keepass:keepass:2.4.1
-
cpe:2.3:a:keepass:keepass:2.40
-
cpe:2.3:a:keepass:keepass:2.41
-
cpe:2.3:a:keepass:keepass:2.42
-
cpe:2.3:a:keepass:keepass:2.42.1
-
cpe:2.3:a:keepass:keepass:2.43
-
cpe:2.3:a:keepass:keepass:2.44
-
cpe:2.3:a:keepass:keepass:2.45
-
cpe:2.3:a:keepass:keepass:2.46
-
cpe:2.3:a:keepass:keepass:2.47
-
cpe:2.3:a:keepass:keepass:2.48
-
cpe:2.3:a:keepass:keepass:2.48.1
-
cpe:2.3:a:keepass:keepass:2.49
-
cpe:2.3:a:keepass:keepass:2.50
-
cpe:2.3:a:keepass:keepass:2.51
-
cpe:2.3:a:keepass:keepass:2.51.1
-
cpe:2.3:a:keepass:keepass:2.52
-
cpe:2.3:a:keepass:keepass:2.53
-
cpe:2.3:a:keepass:keepass:2.53.1