Devolutions · Devolutions Password Hub · CVE-2022-23849
**Name of the Vulnerable Software and Affected Versions**
Devolutions Password Hub for iOS versions prior to 2021.3.4
**Description**
The biometric lock in the application allows attackers to access it due to an authentication bypass issue. This can be exploited by rapidly making failed biometric authentication attempts.
**Recommendations**
For versions prior to 2021.3.4, update to version 2021.3.4 or later to resolve the issue. As a temporary workaround, consider disabling the biometric lock feature until a patch is applied. Restrict access to sensitive data stored in the application to minimize the risk of exploitation.