LastPassVulnerabilities

Author: Max Chee

This repo describes 2 vulnerabilties which I have discovered on Last Pass iOS App. As the vulnerability requires a jailbroken device to subvert the local authentication used by LastPass, they have decided not to fix it.

Vulnerability #1: Bypass password authentication for LastPass lock screen Video Link : https://youtu.be/63PfHVSr8iw

Vulnerability #2: Bypass pin authentication for LastPass lock screen Video Link : https://youtu.be/C5j7drIylsQ

Detailed writeup for both vulnerability is available in the word document.

Name		Name	Last commit message	Last commit date
Latest commit History 3 Commits
README.md		README.md
Replication of CVE to bypass password authentication for unlocking vault on LastPass.docx		Replication of CVE to bypass password authentication for unlocking vault on LastPass.docx

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Repository files navigation

LastPassVulnerabilities

About

Uh oh!

Releases

Packages

evilblazer/LastPassVulnerabilities

Folders and files

Latest commit

History

Repository files navigation

LastPassVulnerabilities

About

Resources

Uh oh!

Stars

Watchers

Forks

Releases

Packages 0

Packages