CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-42111

An issue was discovered in the RCDevs OpenOTP app 1.4.13 and 1.4.14 for iOS. If it is installed on a jailbroken device, it is possible to retrieve the PIN code used to access the application. The IOS app version 1.4.1631262629 resolves this issue by storing a hash PIN code.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 16.1%

CVSS Severity

CVSS v3 Score 5.5

CVSS v2 Score 2.1

References

https://cds.thalesgroup.com/en/tcs-cert/CVE-2021-42111
https://excellium-services.com/cve-2021-42111/
https://excellium-services.com/cve-2021-42111/

Products affected by CVE-2021-42111

Rcdevs » Openotp Token » Version: 1.4.13

cpe:2.3:a:rcdevs:openotp_token:1.4.13
Rcdevs » Openotp Token » Version: 1.4.14

cpe:2.3:a:rcdevs:openotp_token:1.4.14

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-42111

Products

Pricing

Contact Us