An issue was discovered in AgileBits 1Password, involving the method various 1Password apps and integrations used to create connections to the 1Password service. In specific circumstances, this issue allowed a malicious server to convince a 1Password app or integration it is communicating with the 1Password service.
References
Link | Resource |
---|---|
https://support.1password.com/kb/202206/ | Vendor Advisory |
https://support.1password.com/kb/202206/ | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 07:06
Type | Values Removed | Values Added |
---|---|---|
References | () https://support.1password.com/kb/202206/ - Vendor Advisory |
25 Mar 2024, 17:51
Type | Values Removed | Values Added |
---|---|---|
First Time |
1password command Line Interface
|
|
CPE | cpe:2.3:a:1password:command_line_interface:*:*:*:*:*:*:*:* |
24 Jun 2022, 17:27
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:1password:1password_in_the_browser:*:*:*:*:*:*:*:* cpe:2.3:a:1password:1password:*:*:*:*:*:macos:*:* cpe:2.3:a:1password:1password:*:*:*:*:*:android:*:* cpe:2.3:a:1password:1password:*:*:*:*:*:linux:*:* cpe:2.3:a:1password:command-line:*:*:*:*:*:*:*:* cpe:2.3:a:1password:connect:*:*:*:*:*:*:*:* cpe:2.3:a:1password:scim_bridge:*:*:*:*:*:*:*:* cpe:2.3:a:1password:1password:*:*:*:*:*:iphone_os:*:* cpe:2.3:a:1password:1password:*:*:*:*:*:windows:*:* |
|
References | (MISC) https://support.1password.com/kb/202206/ - Vendor Advisory | |
CWE | NVD-CWE-noinfo | |
CVSS |
v2 : v3 : |
v2 : 5.8
v3 : 4.8 |
15 Jun 2022, 19:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-06-15 19:15
Updated : 2024-11-21 07:06
NVD link : CVE-2022-32550
Mitre link : CVE-2022-32550
CVE.ORG link : CVE-2022-32550
JSON object : View
Products Affected
1password
- connect
- 1password_in_the_browser
- 1password
- scim_bridge
- command-line
- command_line_interface
CWE