Users can lock their notes with a password in Memono version 3.8. Thus, users needs to know a password to read notes. However, these notes are stored in a database without encryption and an attacker can read the password-protected notes without having the password. Notes are stored in the ZENTITY table in the memono.sqlite database.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2020-04-16T18:48:36
Updated: 2024-08-04T11:42:00.505Z
Reserved: 2020-04-16T00:00:00
Link: CVE-2020-11826
Vulnrichment
No data.
NVD
Status : Modified
Published: 2020-04-16T19:15:27.680
Modified: 2024-11-21T04:58:42.703
Link: CVE-2020-11826
Redhat
No data.