CVE-2023-27706 : Bitwarden Windows desktop application versions prior to v2023.4.0 store biometri

Bitwarden Windows desktop application versions prior to v2023.4.0 store biometric keys in Windows Credential Manager, accessible to other local unprivileged processes.

Published 2023-06-09 19:15:09

Updated 2025-01-06 18:15:12

Source MITRE

View at NVD, CVE.org

Products affected by CVE-2023-27706

Bitwarden » Bitwarden » Desktop Edition
Versions before (<) 2023.4.0
cpe:2.3:a:bitwarden:bitwarden:*:*:*:*:desktop:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2023-27706

EPSS FAQ

0.02%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 4 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2023-27706

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
7.1	HIGH	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N	1.8	5.2	134c704f-9b21-4f2e-91b3-4a467353bcc0	2025-01-06
Attack Vector: Local Attack Complexity: Low Privileges Required: Low User Interaction: None Scope: Unchanged Confidentiality: High Integrity: High Availability: None
7.1	HIGH	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N	1.8	5.2	NIST
Attack Vector: Local Attack Complexity: Low Privileges Required: Low User Interaction: None Scope: Unchanged Confidentiality: High Integrity: High Availability: None

CWE ids for CVE-2023-27706

CWE-312 Cleartext Storage of Sensitive Information

The product stores sensitive information in cleartext within a resource that might be accessible to another control sphere.
Assigned by:
- 134c704f-9b21-4f2e-91b3-4a467353bcc0 (Secondary)
- nvd@nist.gov (Primary)

References for CVE-2023-27706

https://github.com/bitwarden/clients/blob/8b5a223ad4ca0f89b6c9bcdbddef464d1755d2c0/apps/desktop/desktop_native/src/password/windows.rs#L16

clients/windows.rs at 8b5a223ad4ca0f89b6c9bcdbddef464d1755d2c0 · bitwarden/clients · GitHub
Product
https://github.com/bitwarden/clients

GitHub - bitwarden/clients: Bitwarden client applications (web, browser extension, desktop, and cli)
Product
https://hackerone.com/reports/1874155

Bitwarden | Report #1874155 - Biometric key is stored in Windows Credential Manager, accessible to other local unprivileged processes | HackerOne
Exploit;Issue Tracking;Third Party Advisory
https://github.com/bitwarden/clients/blob/8b5a223ad4ca0f89b6c9bcdbddef464d1755d2c0/apps/desktop/desktop_native/src/biometric/windows.rs#L19

clients/windows.rs at 8b5a223ad4ca0f89b6c9bcdbddef464d1755d2c0 · bitwarden/clients · GitHub
Product

Jump to

Vulnerability Details : CVE-2023-27706

Products affected by CVE-2023-27706

Exploit prediction scoring system (EPSS) score for CVE-2023-27706

CVSS scores for CVE-2023-27706

CWE ids for CVE-2023-27706

References for CVE-2023-27706