Medium severity6.5NVD Advisory· Published May 20, 2024· Updated Jun 17, 2026
CVE-2024-33900
CVE-2024-33900
Description
KeePassXC 2.7.7 allows an attacker (who has the privileges of the victim) to recover cleartext credentials via a memory dump. NOTE: the vendor disputes this because memory-management constraints make this unavoidable in the current design and other realistic designs.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- KeePassXC/KeePassXCdescription
Patches
Vulnerability mechanics
References
4- gist.github.com/Fastor01/30c6d89c842feb1865ec2cd2d3806838nvdExploit
- github.com/keepassxreboot/keepassxc/issues/10784nvdIssue Tracking
- keepassxc.org/blog/nvdRelease Notes
- keepassxc.org/blog/2019-02-21-memory-security/nvdProduct
News mentions
0No linked articles in our index yet.