As noted here KeePass exposes the credentials present in user-interacted entries in cleartext within memory even after going into a locked state.
This is not a bug.
The KeePass documentation describes this known limitation of Windows process memory protection at https://keepass.info/help/base/security.html#secmemprot. Note the last paragraph of the section.
Below are three threads in the Discussion Forum that are discussing the audit.
Security Analysis shows need for improvement of KeePass and others
Password Managers: Under the Hood of Secrets Management - Independent Security Evaluators
Washington Post Says KeePass is Risky
Log in to post a comment.
This is not a bug.
The KeePass documentation describes this known limitation of Windows process memory protection at https://keepass.info/help/base/security.html#secmemprot. Note the last paragraph of the section.
Below are three threads in the Discussion Forum that are discussing the audit.
Security Analysis shows need for improvement of KeePass and others
Password Managers: Under the Hood of Secrets Management - Independent Security Evaluators
Washington Post Says KeePass is Risky
Last edit: wellread1 2019-03-03