Vulnerabilities > CVE-2021-44033 - Improper Restriction of Excessive Authentication Attempts vulnerability in Ionic Identity Vault

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

local

low complexity

NVD

Published: 2021-11-19

Updated: 2021-11-23

Summary

In Ionic Identity Vault before 5.0.5, the protection mechanism for invalid unlock attempts can be bypassed.

Part	Description	Count
Application	Ionic Ionic Identity Vault 3.0.0 Ionic Identity Vault 3.1.0 Ionic Identity Vault 3.2.0 Ionic Identity Vault 3.2.1 Ionic Identity Vault 3.2.2 Ionic Identity Vault 3.2.3 Ionic Identity Vault 3.3.0 Ionic Identity Vault 3.4.0 Ionic Identity Vault 3.4.1 Ionic Identity Vault 3.4.2 Ionic Identity Vault 3.4.3 Ionic Identity Vault 3.4.4 Ionic Identity Vault 3.4.5 Ionic Identity Vault 3.4.6 Ionic Identity Vault 3.4.7 Ionic Identity Vault 3.4.8 Ionic Identity Vault 3.5.0 Ionic Identity Vault 3.5.1 Ionic Identity Vault 3.6.0 Ionic Identity Vault 3.6.1 Ionic Identity Vault 3.6.2 Ionic Identity Vault 3.6.3 Ionic Identity Vault 3.6.4 Ionic Identity Vault 4.0.0 Ionic Identity Vault 4.0.1 Ionic Identity Vault 4.1.0 Ionic Identity Vault 4.2.0 Ionic Identity Vault 4.2.1 Ionic Identity Vault 4.2.2 Ionic Identity Vault 4.2.4 Ionic Identity Vault 4.2.5 Ionic Identity Vault 4.2.6 Ionic Identity Vault 4.2.7 Ionic Identity Vault 4.2.8 Ionic Identity Vault 4.3.0 Ionic Identity Vault 4.3.1 Ionic Identity Vault 4.3.2 Ionic Identity Vault 4.3.3 Ionic Identity Vault 5.0 Ionic Identity Vault 5.0.1 Ionic Identity Vault 5.0.2 Ionic Identity Vault 5.0.3	42