CVE-2020-29392

2020-11-3017:58:24

mitre

www.cve.org

4.5 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

40.8%

JSON

The Estil Hill Lock Password Manager Safe app 2.3 for iOS has a #06# backdoor password. An attacker with physical access can unlock the password manager without knowing the master password set by the user.

References

i.blackhat.com/asia-20/Friday/asia-20-Loke-Patching-Loopholes-Finding-Backdoors-In-Applications.pdf