Keepass · Keepass · CVE-2015-8378
**Name of the Vulnerable Software and Affected Versions**
KeePassX versions prior to 0.4.4
**Description**
The issue allows context-dependent attackers to obtain sensitive information by reading the .xml dotfile, which contains a cleartext copy of password data created when an XML export action is cancelled.
**Recommendations**
For versions prior to 0.4.4, update to version 0.4.4 or later to resolve the issue. As a temporary workaround, consider avoiding the XML export action until the update is applied.