High severity7.5NVD Advisory· Published May 15, 2023· Updated Jun 17, 2026
CVE-2023-32784
CVE-2023-32784
Description
In KeePass 2.x before 2.54, it is possible to recover the cleartext master password from a memory dump, even when a workspace is locked or no longer running. The memory dump can be a KeePass process dump, swap file (pagefile.sys), hibernation file (hiberfil.sys), or RAM dump of the entire system. The first character cannot be recovered. In 2.54, there is different API usage and/or random string insertion for mitigation.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
7- osv-coords5 versionspkg:rpm/opensuse/keepass&distro=openSUSE%20Leap%2015.4pkg:rpm/opensuse/keepass&distro=openSUSE%20Leap%2015.5pkg:rpm/opensuse/keepass&distro=openSUSE%20Tumbleweedpkg:rpm/suse/keepass&distro=SUSE%20Package%20Hub%2015%20SP4pkg:rpm/suse/keepass&distro=SUSE%20Package%20Hub%2015%20SP5
< 2.54-bp154.2.3.1+ 4 more
- (no CPE)range: < 2.54-bp154.2.3.1
- (no CPE)range: < 2.54-bp155.2.3.1
- (no CPE)range: < 2.54-1.1
- (no CPE)range: < 2.54-bp154.2.3.1
- (no CPE)range: < 2.54-bp155.2.3.1
Patches
Vulnerability mechanics
References
1- sourceforge.net/p/keepass/discussion/329220/thread/f3438e6283/nvdIssue Tracking
News mentions
0No linked articles in our index yet.