Vulnerabilities > CVE-2018-1000835 - XXE vulnerability in Keepassdx Keepass DX 2.5.0.0
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
KeePassDX version <= 2.5.0.0beta17 contains a XML External Entity (XXE) vulnerability in kdbx file parser that can result in Disclosure of confidential data, denial of service, SSRF, port scanning.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 17 |