CVE pending
– pending –
Vulnerable software
PasswordSafe 8.12.1.22757 (according to the manufacturer, the current version 8.13.9.26689 was also affected at that time)
Vulnerability
Weak cryptography
Timeline
- 26.01.2022: Contact with Mateso by e-mail
- 26.01.2022: Answer from Mateso
- 02.02.2022: Consultation from Mateso
- 03.03.2022: Phone call with Mateso – update planned until end of August 2022
- 04.03.2022: Since then no response to inquiries from HanseSecure.
- 17.10.2022: Unsuccessful contact attempt
- 10.02.2023: Manufacturer contacted again
- 11.02.2023: Answer from manufacturer with request for further extension.
- 14.02.2023: Reply from HanseSecure for proposed solution: no response
- 28.02.2023: Publication