VYPR
Critical severity10.0OSV Advisory· Published Dec 20, 2018· Updated Jun 17, 2026

CVE-2018-1000835

CVE-2018-1000835

Description

KeePassDX version <= 2.5.0.0beta17 contains a XML External Entity (XXE) vulnerability in kdbx file parser that can result in Disclosure of confidential data, denial of service, SSRF, port scanning.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3
  • Kunzisoft/KeepassdxOSV2 versions
    2.5.0.0beta1, 2.5.0.0beta10, 2.5.0.0beta11, …+ 1 more
    • (no CPE)range: 2.5.0.0beta1, 2.5.0.0beta10, 2.5.0.0beta11, …
    • (no CPE)range: <=2.5.0.0beta17
  • Keepass/Keepassllm-fuzzy
    Range: <=2.5.0.0beta17

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.