High-severity vulnerability in Passwordstate credential manager. Patch now.

A high-severity vulnerability in Passwordstate, an enterprise password manager, could allow hackers to gain administrative access to stored credentials. The maker, Click Studios, urges the 29,000 customers and 370,000 security professionals using the product to install the update promptly. The flaw enables an authentication bypass that lets attackers create a URL to access an emergency page and then pivot to the administrative section. Passwordstate is crucial for safeguarding organizations' sensitive credentials and integrates with Active Directory for user account management and other security functions. Patching is essential to mitigate the risk of exploitation.