Browse all 7 CVE security advisories affecting Click Studios. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Click Studios develops password management solutions, primarily serving enterprise clients with secure credential storage and access control. Historically, their products have been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from improper input validation and session management flaws. While no major public security incidents have been widely documented, the seven CVEs on record highlight recurring issues in authentication mechanisms and web interfaces. Their security posture reflects common challenges in password management software, where robust encryption must be balanced with user accessibility, creating potential attack vectors that could compromise sensitive organizational credentials if not properly mitigated.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2022-3875 | Click Studios Passwordstate API authentication bypass by assumed-immutable data — PasswordstateCWE-302 | 7.3 | High | 2022-12-19 |
| CVE-2022-3876 | Click Studios Passwordstate API authorization — PasswordstateCWE-266 | 4.3 | Medium | 2022-12-19 |
| CVE-2022-3877 | Click Studios Passwordstate URL Field cross site scripting — PasswordstateCWE-707 | 3.5 | Low | 2022-12-19 |
| CVE-2022-4610 | Click Studios Passwordstate risky encryption — PasswordstateCWE-310 | 1.9 | Low | 2022-12-19 |
| CVE-2022-4611 | Click Studios Passwordstate hard-coded credentials — PasswordstateCWE-798 | 4.3 | Medium | 2022-12-19 |
| CVE-2022-4612 | Click Studios Passwordstate insufficiently protected credentials — PasswordstateCWE-522 | 4.3 | Medium | 2022-12-19 |
| CVE-2022-4613 | Click Studios Passwordstate Browser Extension Provisioning improper authorization — PasswordstateCWE-266 | 5.0 | Medium | 2022-12-19 |
This page lists every published CVE security advisory associated with Click Studios. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.