CVE-2022-4613— Click Studios Passwordstate Browser Extension Provisioning improper authorization

Click Studios Passwordstate Browser Extension Provisioning improper authorization

A vulnerability was found in Click Studios Passwordstate and Passwordstate Browser Extension Chrome and classified as critical. This issue affects some unknown processing of the component Browser Extension Provisioning. The manipulation leads to improper authorization. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. It is recommended to upgrade the affected component. The associated identifier of this vulnerability is VDB-216275.

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L

特权授予不正确

Click Studios Passwordstate 安全漏洞

Click Studios Passwordstate（passwordstate）是澳大利亚Click Studios团队的一款密码管理软件。该软件为用户提供了密码保存功能，用户可以在软件中记录自己的各种账号和密码，软件还会保证账号密码的安全。该软件为用户提供了密码保存功能，用户可以在软件中记录自己的各种账号和密码，软件还会保证账号密码的安全。 Click Studios Passwordstate和Passwordstate浏览器扩展Chrome存在安全漏洞，该漏洞源于错误操作导致授权不当。

N/A

N/A