Mebeim

**Name of the Vulnerable Software and Affected Versions** Bitwarden Windows desktop application versions prior to v2023.4.0 **Description** The issue concerns the storage of biometric keys in the Windows Credential Manager by the Bitwarden Windows desktop application, making them accessible to other local unprivileged processes. This highlights challenges in secure password management. **Recommendations** For versions prior to v2023.4.0, update to version v2023.4.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the Windows Credential Manager to minimize the risk of exploitation.