Binh Truong Posted December 18, 2018 Report Posted December 18, 2018 Hi Enpass team, Currently there is the Magellan Vulnerability on SQLLite. Enpass use SQLCipher engine and SQLCipher use old version of SQLLite (under 3.26). So I wonder if encrypted data of Enpass is still safe with this Magellan Vulnerability? Thanks, Binh
Vinod Kumar Posted December 18, 2018 Report Posted December 18, 2018 Hi @Binh Truong, This bug is relevant to apps where an attacker can execute arbitrary SQL, such as in web browsers using WebSQL. We have our own sql queries and and do not accept sql from arbitrary sources. So, your data is safe with Enpass. Cheers,
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now