CVE-2018-4847

CVE-2018-4847

A vulnerability has been identified in SIMATIC WinCC OA Operator iOS App (All versions). Insufficient protection of sensitive information (e.g. session key for accessing server) in Siemens WinCC OA Operator iOS app could allow an attacker with physical access to the mobile device to read unencrypted data from the app’s directory. At the time of advisory publication no public exploitation of this security vulnerability was known. Siemens provides mitigations to resolve the security issue.

Source: CVE-2018-4847

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다