Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
4.6
CVSSv3

CVE-2018-4847

Published: 23/04/2018 Updated: 03/10/2019
CVSS v2 Base Score: 2.1 | Impact Score: 2.9 | Exploitability Score: 3.9
CVSS v3 Base Score: 4.6 | Impact Score: 3.6 | Exploitability Score: 0.9
VMScore: 187
Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N

Vulnerability Summary

A vulnerability has been identified in SIMATIC WinCC OA Operator iOS App (All versions < V1.4). Insufficient protection of sensitive information (e.g. session key for accessing server) in Siemens WinCC OA Operator iOS app could allow an attacker with physical access to the mobile device to read unencrypted data from the app's directory. Siemens provides mitigations to resolve the security issue.

Vulnerable Product Search on Vulmon Subscribe to Product

siemens simatic wincc oa operator -

Github Repositories

https://github.com/zzzteph/zzzteph

Hi there 👋 My name is Ivan, or Steph I do security trainings, researches, and, from time to time, some bughunting, pentests, and other security stuff ⚡ Fun fact: I'm not a cat Contacts Twitter: @w34kp455 Telegram: zzzteph Discord: discordgg/eEEWHPyEVp LinkedIn: ivan iushkevich Projects For any kind of bruteforce find wordlists weakpasscom

References

CWE-311https://cert-portal.siemens.com/productcert/pdf/ssa-597741.pdfhttp://www.securityfocus.com/bid/103941https://nvd.nist.govhttps://github.com/zzzteph/zzzteph
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310CVE-2024-21683CVE-2024-22187chromedeserializationXPath injectionCVE-2024-27842denial of serviceCVE-2024-24851googleCVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook