CVE-2017-8296

Name of the Vulnerable Software and Affected Versions kedpm versions 0.5 through 1.0

Description The issue allows for the disclosure of sensitive information, including the master password, due to the storage of command history in cleartext. This affects the confidentiality of password entries and their names.

Recommendations For versions 0.5 through 1.0, consider removing or securing the history file located at ~/.kedpm/history to prevent unauthorized access to sensitive information. As a temporary workaround, avoid using the password command with an argument that could expose the master password. Restrict access to the history file to minimize the risk of exploitation.