GHSA-rwx9-wqj8-vr77, CVE-2020-24653
npm/expo
Expo on iOS is insecure due incorrect security attribute application
secure-store in Expo through 2.16.1 on iOS provides the insecure kSecAttrAccessibleAlwaysThisDeviceOnly policy when WHENUNLOCKEDTHISDEVICEONLY is used.
All versions before 9.1.0
Upgrade to version 9.1.0 or above.
2022-09-19
source |