Buttercup v2.20.3 allows attackers to obtain the hash of the master password for the password manager via accessing the file /vaults.json/
References
Link | Resource |
---|---|
https://buttercup.pw/ | Product |
https://github.com/tristao-marinho/CVE-2023-41646/ | Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2023-09-07T00:00:00
Updated: 2023-09-07T21:35:08.591501
Reserved: 2023-08-30T00:00:00
Link: CVE-2023-41646
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-09-07T22:15:07.857
Modified: 2023-09-12T20:02:24.610
Link: CVE-2023-41646
JSON object: View
Redhat Information
No data.
CWE