Security & Compliance
A vulnerability was fixed in Devolutions Password Hub for iOS where the FaceID application lock could be bypassed.
Devolutions Password Hub for iOS 2021.3.3 and older
Initial Publication - 2022-02-17
Devolutions Password Hub for iOS
Bypassable biometric application lock (CVE-2022-23849)
The biometric application lock can be bypassed by failing the authentication process in rapid succession.
Remediation and Workarounds
Users are advised to update to 2021.3.4.
Medium - CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Devolutions Password Hub on iOS versions 2021.3.3 and older