KeePassDX version <= 2.5.0.0beta17 contains a XML External Entity (XXE) vulnerability in kdbx file parser that can result in Disclosure of confidential data, denial of service, SSRF, port scanning.
{
"versions": [
{
"introduced": "0"
},
{
"last_affected": "2.5.0.0-beta1"
},
{
"introduced": "0"
},
{
"last_affected": "2.5.0.0-beta10"
},
{
"introduced": "0"
},
{
"last_affected": "2.5.0.0-beta11"
},
{
"introduced": "0"
},
{
"last_affected": "2.5.0.0-beta12"
},
{
"introduced": "0"
},
{
"last_affected": "2.5.0.0-beta13"
},
{
"introduced": "0"
},
{
"last_affected": "2.5.0.0-beta14"
},
{
"introduced": "0"
},
{
"last_affected": "2.5.0.0-beta15"
},
{
"introduced": "0"
},
{
"last_affected": "2.5.0.0-beta16"
},
{
"introduced": "0"
},
{
"last_affected": "2.5.0.0-beta17"
},
{
"introduced": "0"
},
{
"last_affected": "2.5.0.0-beta2"
},
{
"introduced": "0"
},
{
"last_affected": "2.5.0.0-beta3"
},
{
"introduced": "0"
},
{
"last_affected": "2.5.0.0-beta4"
},
{
"introduced": "0"
},
{
"last_affected": "2.5.0.0-beta5"
},
{
"introduced": "0"
},
{
"last_affected": "2.5.0.0-beta6"
},
{
"introduced": "0"
},
{
"last_affected": "2.5.0.0-beta7"
},
{
"introduced": "0"
},
{
"last_affected": "2.5.0.0-beta8"
},
{
"introduced": "0"
},
{
"last_affected": "2.5.0.0-beta9"
}
]
}