Security & Compliance
DEVO-2022-0001
Zusammenfassung
A vulnerability was fixed in Devolutions Hub for iOS where the FaceID application lock could be bypassed.
Betroffene Produkte
Devolutions Hub for iOS 2021.3.3 and older
Änderungsprotokoll
Initial Publication - 2022-02-17
Schweregrad
Medium
Produkt
Devolutions Hub for iOS
Behobene Version
2021.3.4
Bypassable biometric application lock (CVE-2022-23849)
Beschreibung
The biometric application lock can be bypassed by failing the authentication process in rapid succession.
Behebungen und Workarounds
Users are advised to update to 2021.3.4.
Schweregrad
Medium - CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Betroffene Produkte
Devolutions Hub on iOS versions 2021.3.3 and older
CVE(s)
CVE-2022-23849
Danksagungen
Thanks to Sven Halm for reporting this issue.