Skip to main content

Metamask

1 CVEs product

Monthly

CVE-2022-32969 MEDIUM PATCH This Month

MetaMask before 10.11.3 might allow an attacker to access a user's secret recovery phrase because an input field is used for a BIP39 mnemonic, and Firefox and Chromium save such fields to disk in. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required.

Google Mozilla Information Disclosure Metamask
NVD GitHub
CVSS 3.1
5.9
EPSS
1.4%
EPSS 1% CVSS 5.9
MEDIUM PATCH This Month

MetaMask before 10.11.3 might allow an attacker to access a user's secret recovery phrase because an input field is used for a BIP39 mnemonic, and Firefox and Chromium save such fields to disk in. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required.

Google Mozilla Information Disclosure +1
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy