RSS   Vulnerabilities for 'Quicken 2018'   RSS

2018-12-03
 
CVE-2018-3854

CWE-200
 

 
An exploitable information disclosure vulnerability exists in the password protection functionality of Quicken Deluxe 2018 for Mac version 5.2.2. A specially crafted sqlite3 request can cause the removal of the password protection, allowing an attacker to access and modify the data without knowing the password. An attacker needs to have access to the password-protected files to trigger this vulnerability.

 

 >>> Vendor: Intuit 8 Products
Turbo tax
Quickbooks
Bookkeeping
Proseries
Quicken
Quicktax
Lacerte
Quicken 2018


Copyright 2021, cxsecurity.com

 

Back to Top