CVE-2022-29868 is a vulnerability in 1password
Published on May 9, 2022
1Password for Mac 7.2.4 through 7.9.x before 7.9.3 is vulnerable to a process validation bypass. Malicious software running on the same computer can exfiltrate secrets from 1Password provided that 1Password is running and is unlocked. Affected secrets include vault items and derived values used for signing in to 1Password.
Products Associated with CVE-2022-29868
Want to know whenever a new CVE is published for 1password? stack.watch will email you.
Exploit Probability
EPSS
0.03%
Percentile
8.02%
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.