CNNVD-202509-2617 Information
CNNVD ID
CNNVD-202509-2617
Related CVE
- CNNVD Published: 2025-09-16
Description (Chinese)
Click Studios Passwordstate(passwordstate)是澳大利亚Click Studios团队的一款密码管理软件。该软件为用户提供了密码保存功能,用户可以在软件中记录自己的各种账号和密码,软件还会保证账号密码的安全。该软件为用户提供了密码保存功能,用户可以在软件中记录自己的各种账号和密码,软件还会保证账号密码的安全。 Click Studios Passwordstate 9.9 Build 9972之前版本存在安全漏洞,该漏洞源于特制URL可能导致身份验证绕过,未经授权人员可访问Passwordstate管理部分。
Description (English)
Crick Studios Passwordstate (passwordstate) is a password management software for the Crick Studios team in Australia. The software provides the user with a password-keeping function, which allows the user to record its various account numbers and passwords in the software, and ensures the security of the account code. The software provides the user with a password-keeping function, which allows the user to record its various account numbers and passwords in the software, and ensures the security of the account code. The previous version of Click Studios Passwordstate 9.9 Build 9972 had a security loophole, which stemmed from the fact that a unique URL could cause identification to bypass and that unauthorized persons could access Passwordstate management.
Hazard Level
Critical
Vulnerability Type
其他
Affected Vendor
Click Studios
Published
2025-09-16
Last Modified
2026-02-24
References
https://www.clickstudios.com.au/passwordstate-changelog.aspx https://www.clickstudios.com.au/security/advisories/ https://access.redhat.com/security/cve/cve-2025-59453
Patch
https://www.clickstudios.com.au/passwordstate-changelog.aspx
Share on: