CVE-2021-3145

Ionic Identity Vault before version 5 on Android is vulnerable to a biometric authentication bypass that can be exploited by a local root attacker. Affected are Identity Vault versions 4.7 and earlier on Android, with the vulnerability allowing bypass of biometric protection and granting access t...

CVE-2021-44033

The CVE-2021-44033 vulnerability affects Ionic Identity Vault prior to version 5.0.5 (notably 5.0.4 and earlier) and permits bypassing the protection mechanism for invalid unlock attempts on Android and iOS. The issue stems from the PIN unlock lockout logic, enabling an attacker to bypass authent...