VYPR
Moderate severityNVD Advisory· Published Sep 7, 2023· Updated Sep 26, 2024

CVE-2023-41646

CVE-2023-41646

Description

Buttercup v2.20.3 allows attackers to obtain the hash of the master password for the password manager via accessing the file /vaults.json/

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
buttercupnpm
>= 2.20.3, < 7.4.07.4.0

Affected products

2

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.