PT-2022-26680 · Passwork · Passwork
Published
2022-11-07
·
Updated
2022-11-08
·
CVE-2022-42956
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
PassWork extension version 5.0.9
Description
The issue allows an attacker to obtain the cleartext master password.
Recommendations
For PassWork extension version 5.0.9, update to a version that fixes this issue to prevent attackers from obtaining the cleartext master password.
Fix
Cleartext Storage of Sensitive Information
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Passwork