Click Studios has issued an urgent warning for users of Passwordstate, revealing a high-severity authentication bypass vulnerability that requires immediate patching. The vulnerability allows attackers to access the administrative section through a specially crafted URL, underscoring the importance of updating to the latest version. #Passwordstate #ClickStudios
Keypoints
- Click Studios urges Passwordstate users to update to version 9.9 Build 9972 immediately.
- The high-severity flaw enables attacker to bypass authentication via crafted URL on Emergency Access page.
- A temporary workaround involves setting Allowed IP Addresses under system settings.
- Four years ago, the company detected a supply chain attack delivering malware to users of Passwordstate.
- The company emphasizes the importance of timely security updates to prevent exploitation.