CVE-2023-32784

Severity Score

7.5

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

In KeePass 2.x before 2.54, it is possible to recover the cleartext master password from a memory dump, even when a workspace is locked or no longer running. The memory dump can be a KeePass process dump, swap file (pagefile.sys), hibernation file (hiberfil.sys), or RAM dump of the entire system. The first character cannot be recovered. In 2.54, there is different API usage and/or random string insertion for mitigation.

En KeePass v2.x anterior a v2.54, es posible recuperar la contraseña maestra en texto claro a partir de un volcado de memoria, incluso cuando un espacio de trabajo está bloqueado o ya no se ejecuta. El volcado de memoria puede ser un volcado de proceso de KeePass, un archivo de intercambio (pagefile.sys), un archivo de hibernación (hiberfil.sys) o un volcado de RAM de todo el sistema. El primer carácter no se puede recuperar. En la versión 2.54, hay un uso diferente de la API y/o inserción de una cadena aleatoria para la mitigación.

*Credits: N/A

CVSS Scores

NISTv3.1 7.5

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

None

Availability

None

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2023-05-15 CVE Reserved
2023-05-15 CVE Published
2023-06-17 First Exploit
2024-08-02 CVE Updated
2024-10-25 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date

CWE

CWE-319: Cleartext Transmission of Sensitive Information

CAPEC

References (9)

URL	Tag	Source
https://github.com/keepassxreboot/keepassxc/discussions/9433	Issue Tracking
https://sourceforge.net/p/keepass/discussion/329220/thread/f3438e6283	Issue Tracking

URL	Date	SRC
https://github.com/Cmadhushanka/CVE-2023-32784-Exploitation	2024-07-10
https://github.com/CTM1/CVE-2023-32784-keepass-linux	2023-06-17
https://github.com/dawnl3ss/CVE-2023-32784	2023-08-30
https://github.com/ValentinPundikov/poc-CVE-2023-32784	2023-10-17
https://github.com/Hirusha-N/CVE-2021-34527-CVE-2023-38831-and-CVE-2023-32784	2024-06-25
https://github.com/le01s/poc-CVE-2023-32784	2023-10-17
https://github.com/vdohney/keepass-password-dumper	2024-08-02

URL	Date	SRC

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Keepass Search vendor "Keepass"		Keepass Search vendor "Keepass" for product "Keepass"				>= 2.00 < 2.54 Search vendor "Keepass" for product "Keepass" and version " >= 2.00 < 2.54"		-		Affected