Unrated severityOSV Advisory· Published Dec 17, 2025· Updated Dec 17, 2025
CVE-2025-65203
CVE-2025-65203
Description
KeePassXC-Browser thru 1.9.9.2 autofills or prompts to fill stored credentials into documents rendered under a browser-enforced CSP directive and iframe attribute sandbox, allowing attacker-controlled script in the sandboxed document to access populated form fields and exfiltrate credentials.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
20.1.0, 0.1.1, 0.1.10, …+ 1 more
- (no CPE)range: 0.1.0, 0.1.1, 0.1.10, …
- (no CPE)range: <=1.9.9.2
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.