VYPR
High severity7.5NVD Advisory· Published Apr 16, 2020· Updated Jun 17, 2026

CVE-2020-11826

CVE-2020-11826

Description

Users can lock their notes with a password in Memono version 3.8. Thus, users needs to know a password to read notes. However, these notes are stored in a database without encryption and an attacker can read the password-protected notes without having the password. Notes are stored in the ZENTITY table in the memono.sqlite database.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.