CVE-2021-3179

MEDIUM

Gglocker - Insufficiently Protected Credentials

Title source: rule

Description

GGLocker iOS application, contains an insecure data storage of the password hash value which results in an authentication bypass.

References (3)

Scores

CVSS v3 5.5
EPSS 0.0007
EPSS Percentile 22.2%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Classification

CWE
CWE-522
Status published

Affected Products (1)

gglocker_project/gglocker

Timeline

Published Dec 16, 2021
Tracked Since Feb 18, 2026