Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2022-3876
HistoryDec 19, 2022 - 11:15 a.m.

Authorization

2022-12-1911:15:00
PRIOn knowledge base
www.prio-n.com
3
vulnerability
click studios
passwordstate
browser extension
chrome
api
authorization bypass
remote exploit
upgrade
vdb-216245.

6.6 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

34.3%

JSON

A vulnerability, which was classified as problematic, has been found in Click Studios Passwordstate and Passwordstate Browser Extension Chrome. This issue affects some unknown processing of the file /api/browserextension/UpdatePassword/ of the component API. The manipulation of the argument PasswordID leads to authorization bypass. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. It is recommended to upgrade the affected component. The identifier VDB-216245 was assigned to this vulnerability.

Related

cvelist 1
cve 1
nvd 1
thn 1
cvelist
cvelist
CVE-2022-3876 Click Studios Passwordstate API authorization
2022-12-19 00:00:00
cve
cve
CVE-2022-3876
2022-12-19 11:15:10
nvd
nvd
CVE-2022-3876
2022-12-19 11:15:10
thn
thn
Critical Security Flaw Reported in Passwordstate Enterprise Password Manager
2022-12-22 12:02:00

6.6 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

34.3%

JSON
Related for PRION:CVE-2022-3876
cvelist1cve1nvd1thn1