Vulnerabilities > KEE

DATE	CVE	VULNERABILITY TITLE	RISK
2020-08-03	CVE-2020-16272	Improper Input Validation vulnerability in KEE Keepassrpc The SRP-6a implementation in Kee Vault KeePassRPC before 1.12.0 is missing validation for a client-provided parameter, which allows remote attackers to read and modify data in the KeePass database via an A=0 WebSocket connection. network low complexity kee CWE-20 critical	9.1
2020-08-03	CVE-2020-16271	Use of Insufficiently Random Values vulnerability in KEE Keepassrpc The SRP-6a implementation in Kee Vault KeePassRPC before 1.12.0 generates insufficiently random numbers, which allows remote attackers to read and modify data in the KeePass database via a WebSocket connection. network low complexity kee CWE-330 critical	9.1

Vulnerabilities > KEE {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"KEE"}]}