Vulnerabilities > CVE-2021-44033 - Improper Restriction of Excessive Authentication Attempts vulnerability in Ionic Identity Vault

Attack vector

PHYSICAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

low complexity

NVD

Published: 2021-11-19

Updated: 2021-11-23

Summary

In Ionic Identity Vault before 5.0.5, the protection mechanism for invalid unlock attempts can be bypassed.

Part	Description	Count
Application	Ionic Ionic Identity Vault 3.0.0 Ionic Identity Vault 3.1.0 Ionic Identity Vault 3.2.0 Ionic Identity Vault 3.2.1 Ionic Identity Vault 3.2.2 Ionic Identity Vault 3.2.3 Ionic Identity Vault 3.3.0 Ionic Identity Vault 3.4.0 Ionic Identity Vault 3.4.1 Ionic Identity Vault 3.4.2 Ionic Identity Vault 3.4.3 Ionic Identity Vault 3.4.4 Ionic Identity Vault 3.4.5 Ionic Identity Vault 3.4.6 Ionic Identity Vault 3.4.7 Ionic Identity Vault 3.4.8 Ionic Identity Vault 3.5.0 Ionic Identity Vault 3.5.1 Ionic Identity Vault 3.6.0 Ionic Identity Vault 3.6.1 Ionic Identity Vault 3.6.2 Ionic Identity Vault 3.6.3 Ionic Identity Vault 3.6.4 Ionic Identity Vault 4.0.0 Ionic Identity Vault 4.0.1 Ionic Identity Vault 4.1.0 Ionic Identity Vault 4.2.0 Ionic Identity Vault 4.2.1 Ionic Identity Vault 4.2.2 Ionic Identity Vault 4.2.4 Ionic Identity Vault 4.2.5 Ionic Identity Vault 4.2.6 Ionic Identity Vault 4.2.7 Ionic Identity Vault 4.2.8 Ionic Identity Vault 4.3.0 Ionic Identity Vault 4.3.1 Ionic Identity Vault 4.3.2 Ionic Identity Vault 4.3.3 Ionic Identity Vault 5.0 Ionic Identity Vault 5.0.1 Ionic Identity Vault 5.0.2 Ionic Identity Vault 5.0.3	42