CVE-2023-47801

Published: Nov 13, 2023

Modified: Sep 3, 2024

PUBLISHED

Description

An issue was discovered in Click Studios Passwordstate before 9811. Existing users (Security Administrators) could use the System Wide API Key to read or delete private password records when specifically used with the PasswordHistory API endpoint. It is also possible to use the Copy/Move Password Record API Key to Copy/Move private password records.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://www.clickstudios.com.au/security/advisories/

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2023-47801

Description

Affected Products

References