Vulnerability identifier: #VU76358

Vulnerability risk: Low

CVSSv3.1: 3 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N/E:P/RL:O/RC:C]

CVE-ID: CVE-2023-32784

CWE-ID: CWE-257

Exploitation vector: Local

Exploits in database: 2

• July 20, 2023
  • BruteForce-to-KeePass (This script complements the results obtained through the keepass-password-dumper tool when exploiting the CVE-2023-32784 vulnerability affecting KeePass.) [Github]
• June 26, 2023
  • keepass-password-dumper (Original PoC for CVE-2023-32784) [Github]

Impact: Information disclosure

Vulnerable software:
KeePass
Client/Desktop applications / Encryption software

Vendor: KeePass