Vaultwarden
Recent Changes
Update vaultwarden to 1.35.4
GHSA-w9f8-m526-h7fh. This vulnerability would allow an attacker to access a cipher from a different user (fully encrypted) if they already know its internal UUID.
GHSA-h4hq-rgvh-wh27. This vulnerability allows an attacker with manager-level access within an organization to modify collections they can access, even if they do not have management permissions for them.
GHSA-r32r-j5jq-3w4m. This vulnerability allows an attacker with manager-level access within an organization to modify collections they are not assigned.
Update Rust and Crates and GHA by @BlackDex in #6843
hide remember 2fa token by @stefan0xC in #6852
fix(send_invite): invite links by @proofofcopilot in #6824
Misc organization fixes by @BlackDex in #6867
Overview
This is the Rust implementation of the Bitwarden backend, not the official server backend, but fully compatible with the Client apps.
Vaultwarden is a self-hosted password manager. It allows you to store and manage your passwords, credit cards, and other private information in a secure way while still allowing you to access it from your browser, phone, or desktop.
Client Apps
The official client apps from bitwarden.com are all supported. In fact the webfrontend, packaged together with this app, is also the official one.
Clients can be downloaded at bitwarden.com
Those apps are a lot of effort to maintain, so please consider supporting the upstream project.
Install Vaultwarden in a few minutes on your server with Cloudron. To install Cloudron first, follow our setup steps.