The data specified recovered from the iOS keychain. An attacker with the ability to decrypt the keychain may get access to the data. This attack requires physical access to the device, specialized tools, and a specialized skill set.
Steps to Reproduce
While the app is running on a physical device, iOS Keychain entries are monitored during dynamic analysis. After interacting with the app, the data specified was recovered from the keychain on the device.
Finding Description
The data specified recovered from the iOS keychain. An attacker with the ability to decrypt the keychain may get access to the data. This attack requires physical access to the device, specialized tools, and a specialized skill set.
Steps to Reproduce
While the app is running on a physical device, iOS Keychain entries are monitored during dynamic analysis. After interacting with the app, the data specified was recovered from the keychain on the device.
Risk and Regulatory Information
Severity: info
Application
See more detail in the NowSecure Report