Is There a Central Repository for 1Password Security Advisories?

Former Member

3 years ago

Is There a Central Repository for 1Password Security Advisories?

I spent over an hour searching before I finally found the link to the 1Password Security Advisory that https://forum.1password.com/profile/Dave_1P provided (https://support.1password.com/kb/202309/). Is there a more centralized location where this information is readily available?

Additionally, I noticed that the rejected CVE identifier, CVE-2023-5129, is not mentioned anywhere on the site. Although this identifier was rejected in favor of CVE-2023-4863 as it covers the same issue, it's worth noting that CVE-2023-5129 is still being cited by various news outlets, blogs, articles, and forums. Many of which directly mention 1Password as being affected.

—CaptAwesome

Keywords/Tags: Security Advisory, CVE, CVE-2023-5129, CVE-2023-4863, WebP, vulnerability, supply chain attack

Forum Discussion

Is There a Central Repository for 1Password Security Advisories?

Is There a Central Repository for 1Password Security Advisories?

Featured discussions

November at 1Password: the Access-Trust gap, planning your estate, and an updated unlock experience

Recent discussions

Safari-extension not working on self hosted app

Native Password AutoFill Extension macOS

1Password 8.11.22 not available for Chrome and Firefox

How to Reveal Entire Credit Card Number

enable auto-fill for localhost (local IP network device) websites