Security Advisory

CVE-2025-65203

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-12-17 00:00:00

Last updated 2025-12-17 18:26:32

Assigner mitre

State PUBLISHED

Description

KeePassXC-Browser thru 1.9.9.2 autofills or prompts to fill stored credentials into documents rendered under a browser-enforced CSP directive and iframe attribute sandbox, allowing attacker-controlled script in the sandboxed document to access populated form fields and exfiltrate credentials.

← Browse all CVEs View on cve.org ↗