CVE-2020-24653

secure-store in Expo through 2.16.1 on iOS provides the insecure kSecAttrAccessibleAlwaysThisDeviceOnly policy when WHEN_UNLOCKED_THIS_DEVICE_ONLY is used.
References
Link Resource
https://github.com/expo/expo/pull/9264 Patch Third Party Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:a:expo:expo:*:*:*:*:*:iphone_os:*:*

History

No history.

Information

Published : 2020-08-26 05:15

Updated : 2023-12-10 13:27


NVD link : CVE-2020-24653

Mitre link : CVE-2020-24653

CVE.ORG link : CVE-2020-24653


JSON object : View

Products Affected

expo

  • expo