CVE-2023-24055

Name of the Vulnerable Software and Affected Versions KeePass versions 2.53 and earlier KeePass through 2.53 (in a default installation)

Description The issue is related to the storage of critical information in an unencrypted manner. An attacker with write access to the XML configuration file can obtain cleartext passwords by adding an export trigger. The vendor's position is that the password database is not intended to be secure against an attacker who has that level of access to the local PC. Researchers argue that this is a security flaw, as no action is required from the KeePass owner to export passwords, making it impossible even in situations where an actor gains access to the device.

Recommendations For KeePass versions 2.53 and earlier, consider disabling the export trigger feature to prevent exploitation until a patch is available. For KeePass through 2.53 (in a default installation), restrict access to the XML configuration file to minimize the risk of exploitation. As a temporary workaround, consider downgrading the executable to a version that does not contain the vulnerable export trigger feature, but be aware that this may introduce other security risks. At the moment, there is no information about a newer version that contains a fix for this vulnerability.