Kaspersky Password Manager For Windows
Approved changes feed: RSS · Atom
cpe:2.3:a:kaspersky:kaspersky_password_manager_for_windows:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Kaspersky (0e3919d1-d2ab-5693-bce6-610f4c2052a6) |
|---|---|
| Product | Kaspersky Password Manager For Windows (fda9f0e4-290a-56ed-8ce9-df92e09657a4) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2023-23349 |
vulnerable | 2026-06-03 14:49:21.273821 |
Details available
LOW (2.2)
Kaspersky has fixed a security issue in Kaspersky Password Manager (KPM) for Windows that allowed a local user to recover the auto-filled credentials from a memory dump when the KPM extension for Google Chrome is used. To exploit the issue, an attacker must trick a user into visiting a login form of a website with the saved credentials, and the KPM extension must autofill these credentials. The attacker must then launch a malware module to steal those specific credentials.
Published: 2024-03-22T16:15:55.200Z
Updated: 2025-04-10T20:10:58.369Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.