Videolan · Vlc Media Player · CVE-2018-19937
**Name of the Vulnerable Software and Affected Versions**
VideoLAN VLC media player app versions prior to 3.1.5 for iOS
**Description**
A local, authenticated attacker can bypass the passcode in the VideoLAN VLC media player app by opening a URL and turning the phone.
**Recommendations**
For versions prior to 3.1.5, update to version 3.1.5 or later to resolve the issue.