CVE-2022-32550
Description
An issue was discovered in AgileBits 1Password, involving the method various 1Password apps and integrations used to create connections to the 1Password service. In specific circumstances, this issue allowed a malicious server to convince a 1Password app or integration it is communicating with the 1Password service.
Related CPE's
CvssV3 impact
Could not find any metrics
CvssV2 impact
AccessComplexity | MEDIUM |
ConfidentialityImpact | PARTIAL |
AvailabilityImpact | NONE |
IntegrityImpact | PARTIAL |
BaseScore | 5.800000190734863 |
VectorString | AV:N/AC:M/Au:N/C:P/I:P/A:N |
Version | 2.0 |
AccessVector | NETWORK |
Authentication | NONE |