CVE-2023-38840

CVE-2023-38840

EPSS 0.6%

Bitwarden Desktop 2023.7.0 and below allows an attacker with local access to obtain sensitive information via the Bitwarden.exe process.

Produtos afetados

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://github.com/bitwarden/clients/pull/5813 https://github.com/bitwarden/desktop/issues/476 https://github.com/markuta/bw-dump https://redmaple.tech/blogs/2023/extract-bitwarden-vault-passwords/