Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in Keeper Password Manager for Desktop version 16.10.2 (fixed in 17.2), and the KeeperFill Browser Extensions version 16.5.4 (fixed in 17.2), allows local attackers to gain sensitive information via plaintext password storage in memory after the user is already logged in, and may persist after logout. NOTE: the vendor disputes this for two reasons: the information is inherently available during a logged-in session when the attacker can read from arbitrary memory locations, and information only remains available after logout because of memory-management limitations of web browsers (not because the Keeper technology itself is retaining the information).
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Keeper Password Manager 安全漏洞
Vulnerability Description
Keeper Security Keeper Password Manager是Keeper Security公司的一个密码管理系统。 Keeper Password Manager 16.10.2版本和KeeperFill Browser Extensions 16.5.4版本存在安全漏洞,该漏洞源于允许本地攻击者在用户登录后通过内存中的明文密码存储获取敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A