Binh Truong Posted December 18, 2018 Report Share Posted December 18, 2018 Hi Enpass team, Currently there is the Magellan Vulnerability on SQLLite. Enpass use SQLCipher engine and SQLCipher use old version of SQLLite (under 3.26). So I wonder if encrypted data of Enpass is still safe with this Magellan Vulnerability? Thanks, Binh Link to comment Share on other sites More sharing options...
Vinod Kumar Posted December 18, 2018 Report Share Posted December 18, 2018 Hi @Binh Truong, This bug is relevant to apps where an attacker can execute arbitrary SQL, such as in web browsers using WebSQL. We have our own sql queries and and do not accept sql from arbitrary sources. So, your data is safe with Enpass. Cheers, Link to comment Share on other sites More sharing options...
Binh Truong Posted December 18, 2018 Author Report Share Posted December 18, 2018 Thank for your sharing. Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now