this post was submitted on 20 Jun 2023
15 points (100.0% liked)

Free and Open Source Software

17922 readers
35 users here now

If it's free and open source and it's also software, it can be discussed here. Subcommunity of Technology.

This community's icon was made by Aaron Schneider, under the CC-BY-NC-SA 4.0 license.

founded 2 years ago
MODERATORS
Gaywallet@beehaw.org
alyaza@beehaw.org
15
BSI warnt vor KeePassXC-Schwachstellen / BSI warns of vulnerabilities in the password manager KeePassXC (www.heise.de)
submitted 1 year ago by 73kk13@discuss.tchncs.de to c/foss@beehaw.org
24 comments fedilink hide all child comments
 

heisec@social.heise.de - BSI warnt vor KeePassXC-Schwachstellen

Das BSI warnt vor Schwachstellen im Passwort-Manager KeePassXC. Angreifer können Dateien oder das Master-Passwort ohne Authentifzierungsrückfrage manipulieren.

[The BSI warns of vulnerabilities in the password manager KeePassXC. Attackers can manipulate files or the master password without authentication confirmation.]

you are viewing a single comment's thread
view the rest of the comments
[–] lowleveldata@programming.dev 7 points 1 year ago (1 children)

Ok I checked it up (CVE-2023-35866). It basically says an attacker may export everything if they have access to your unlocked database. Which seems... obvious? The project contributors says it's not a vulnerability which I incline to agree.

[–] interolivary@beehaw.org 7 points 1 year ago

You mean to say that if I leave my door unlocked, somebody might come in? This is shocking news!