CVE-2022-4610

Summary

A vulnerability, which was classified as problematic, has been found in Click Studios Passwordstate and Passwordstate Browser Extension Chrome. Affected by this issue is some unknown functionality. The manipulation leads to risky cryptographic algorithm. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-216272.

Affected Software

VendorProductVersion RangeStatus
Click StudiosPasswordstaten/aaffected
Click StudiosPasswordstate Browser Extension Chromen/aaffected

Weaknesses

  • CWE-310: CWE-310 Cryptographic Issues -> CWE-327 Risky Cryptographic Algorithm

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: poc
    • Automatable: no
    • Technical Impact: partial

References