Click Studios Passwordstate security update
Security Patch Release
Summary
Hide ▲
Show ▼
Click Studios released Passwordstate 9.9 (Build 9972) to fix a high-severity authentication bypass in the Emergency Access page and harden the browser extension against clickjacking. The update shipped on August 28, 2025 and addresses a flaw that had not yet received a CVE. Passwordstate is used by 29,000 customers and 370,000 security and IT professionals, so the release affects a broad enterprise password-management base.
Timeline
-
29.08.2025 12:58 2 articles · 9mo ago
Passwordstate 9.9 fixes Emergency Access authentication bypass
Mitigation Patch UpdateClick Studios released Passwordstate 9.9 (Build 9972) to fix a high-severity potential Authentication Bypass against the core Passwordstate Products' Emergency Access page and added protections against browser-extension clickjacking.
Show sources
- Click Studios Patches Passwordstate Authentication Bypass Vulnerability in Emergency Access Page — thehackernews.com — 29.08.2025 12:58
- Click Studios Patches Passwordstate Authentication Bypass Vulnerability in Emergency Access Page — thehackernews.com — 29.08.2025 12:58
-
29.08.2025 12:58 1 articles · 9mo ago
Passwordstate browser-extension safeguards address DOM-based extension clickjacking
Technical Analysis UpdateClick Studios said the Passwordstate browser-extension safeguards were added in response to research on DOM-based extension clickjacking, and noted that Passwordstate is used by 29,000 customers and 370,000 security and IT professionals across global enterprises, government agencies, financial institutions, and Fortune 500 companies.
Show sources
- Click Studios Patches Passwordstate Authentication Bypass Vulnerability in Emergency Access Page — thehackernews.com — 29.08.2025 12:58