this post was submitted on 28 Jul 2024
14 points (88.9% liked)
Bitwarden
770 readers
1 users here now
Discuss the Paswordmanager Bitwarden.
founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
I don't think this vulnerability applies to bitwarden the same way it does to e.g. chrome browser.
Bitwarden only offers to fill form fields when you have a password for this website - this means, that this website already has your data. Also, bitwarden does not have your address, ssn, phone stored.
Chrome on the other hand allows you to store a multitude of form fields and can filll them automatically, and thus could leak personal data.
Bitwarden does have address fields, and it also had custom fields so you can define any field you want (SSN, etc).
It may not be a good thing to store such info there, but my question is about what happens when you do store that info.
Also, it's possible to have a login/password for a site but not give them your address, etc.
as far as i know, bitwarden stores data on a per-site basis, so unless you saved custom fields for that specific site in the past the app won't give it private data from another site