CVE-2018-1000835
Published
CVSS v3
10
CRITICAL
CVSS v2
7.5
HIGH
Affected
1
PROJECT
Description
KeePassDX version <= 2.5.0.0beta17 contains a XML External Entity (XXE) vulnerability in kdbx file parser that can result in Disclosure of confidential data, denial of service, SSRF, port scanning.
Lightweight vault and password manager for Android, KeePassDX allows editing encrypted data in a single file in KeePass format and fill in the forms in a secure way.
GitHub