CVE-2024-33901

MEDIUM

KeePassXC 2.7.7 - Privilege Escalation

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2024-33901. PoCs published by gmikisilva.

AI-analyzed exploit summary This repository contains a functional Python script that demonstrates CVE-2024-33901, an information leak vulnerability in KeePassXC 2.7.7. The exploit creates a memory dump of the KeePassXC process and searches for password strings, confirming the vulnerability by extracting sensitive data from memory.

Description

Issue in KeePassXC 2.7.7 allows an attacker (who has the privileges of the victim) to recover some passwords stored in the .kdbx database via a memory dump. NOTE: the vendor disputes this because memory-management constraints make this unavoidable in the current design and other realistic designs.

Exploits (1)

nomisec WORKING POC 2 stars
by gmikisilva · poc
https://github.com/gmikisilva/CVE-2024-33901-ProofOfConcept

This repository contains a functional Python script that demonstrates CVE-2024-33901, an information leak vulnerability in KeePassXC 2.7.7. The exploit creates a memory dump of the KeePassXC process and searches for password strings, confirming the vulnerability by extracting sensitive data from memory.

Classification
Working Poc 95%
Attack Type
Info Leak
Complexity
Moderate
Reliability
Reliable
Target: KeePassXC version 2.7.7
Auth required
Prerequisites: KeePassXC 2.7.7 running with an authenticated database · sudo privileges to create a core dump · a list of password guesses in 'TestPasswords.txt'
devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (4)

Core 4

Scores

CVSS v3 6.5
EPSS 0.0070
EPSS Percentile 48.3%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CISA SSVC

Vulnrichment
Exploitation poc
Automatable no
Technical Impact partial

Details

CWE
CWE-316
Status published
Products (1)
keepassxc/keepassxc 2.7.7
Published May 20, 2024
Tracked Since Feb 18, 2026