CVE-2018-4844

🗓️ 20 Mar 2018 14:00:29Reported by [email protected]Type

Vulnerability in SIMATIC WinCC OA UI for Android and iOS ( < V3.15.10) allows unauthorized access to HMI project cache folder

Reporter	Title	Published	Views	Family All 4
Cvelist	CVE-2018-4844	20 Mar 201814:00	–	cvelist
ICS	ICSA-18-081-01 Siemens SIMATIC WinCC OA UI Mobile App	20 Mar 201800:00	–	ics
Prion	Design/Logic Flaw	20 Mar 201814:29	–	prion
CVE	CVE-2018-4844	20 Mar 201814:29	–	cve

Nvd

Node

siemens simatic_wincc_oa_uiRange<3.15.10android

siemens simatic_wincc_oa_uiRange<3.15.10iphone_os

Source	Link
cert-portal	www.cert-portal.siemens.com/productcert/pdf/ssa-822928.pdf
securityfocus	www.securityfocus.com/bid/103475
ics-cert	www.ics-cert.us-cert.gov/advisories/ICSA-18-081-01

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

20 Mar 2018 14:29Current

6Medium risk

Vulners AI Score6

CVSS23.8

CVSS36.7

EPSS0.00044

simatic wincc oa android ios vulnerability unauthorized access hmi project cache folders sandbox mobile device exploitation advisory mitigations