In Ionic Identity Vault before 5.0.5, the protection mechanism for invalid unlock attempts can be bypassed.