CVE-2021-3145

Beschreibung:
In Ionic Identity Vault before 5, a local root attacker on an Android device can bypass biometric authentication.

CWE: CWE-502

CVSS-Bewertung
CVSS 2: – (Version: )
CVSS 3: HIGH – 8.4 (Version: 3.1)

Links:

NVD – CVE-2021-3145
CVE – CVE-2021-3145

Link (max. 20) Quelle Tags
https://ionic.io/products/identity-vault MISC
http://packetstormsecurity.com/files/164085/Ionic-Identity-Vault-4.7-Android-Biometric-Authentication-Bypass.html MISC
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=993746 CONFIRM
https://gitlab.com/mailman/postorius/-/issues/531 MISC
https://phabricator.wikimedia.org/T289798 MISC
DSA-4970 DEBIAN

Quelle: NVD – CVE-2021-3145
Datum Veröffentlichung: 2021-09-10T19:15Z, Datum letzte Änderung: 2021-09-12T15:10Z