Lucene search
K

19 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2017-18594

Malware in sbrugna...

7.5CVSS7.8AI score0.01072EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2017-4234

Malware in sbrugna...

8.8CVSS8.8AI score0.01852EPSS
Exploits0References3
CNVD
CNVD
added 2018/01/11 12:0 a.m.1 views

General Motors and Shanghai OnStar iOS Client Man-in-the-Middle Attack Vulnerability

General Motors GM and Shanghai OnStar SOS iOS Client is an iOS-based application for making SOS distress calls for drivers in the event of a motor vehicle collision. A security vulnerability exists in the GM and SOS iOS Client version 7.1. The vulnerability can be exploited by an attacker to...

5.9CVSS6.5AI score0.01435EPSS
Exploits0References1
OSV
OSV
added 2018/01/09 9:29 p.m.3 views

CVE-2017-12697

A Man-in-the-Middle issue was discovered in General Motors GM and Shanghai OnStar SOS SOS iOS Client 7.1. Successful exploitation of this vulnerability may allow an attacker to intercept sensitive information when the client connects to the server...

5.9CVSS5.8AI score0.01435EPSS
Exploits0References2
NVD
NVD
added 2018/01/09 9:29 p.m.15 views

CVE-2017-12695

An Improper Authentication issue was discovered in General Motors GM and Shanghai OnStar SOS SOS iOS Client 7.1. Successful exploitation of this vulnerability may allow an attacker to subvert security mechanisms and reset a user account password...

8.8CVSS8.4AI score0.01852EPSS
Exploits0References2
NVD
NVD
added 2018/01/09 9:29 p.m.19 views

CVE-2017-9663

An Cleartext Storage of Sensitive Information issue was discovered in General Motors GM and Shanghai OnStar SOS SOS iOS Client 7.1. Successful exploitation of this vulnerability may allow a remote attacker to access an encryption key that is stored in cleartext in memory...

7.5CVSS7.5AI score0.01072EPSS
Exploits0References2
OSV
OSV
added 2018/01/09 9:29 p.m.3 views

CVE-2017-12695

An Improper Authentication issue was discovered in General Motors GM and Shanghai OnStar SOS SOS iOS Client 7.1. Successful exploitation of this vulnerability may allow an attacker to subvert security mechanisms and reset a user account password...

8.8CVSS5.8AI score0.01852EPSS
Exploits0References2
Prion
Prion
added 2018/01/09 9:29 p.m.16 views

Design/Logic Flaw

A Man-in-the-Middle issue was discovered in General Motors GM and Shanghai OnStar SOS SOS iOS Client 7.1. Successful exploitation of this vulnerability may allow an attacker to intercept sensitive information when the client connects to the server...

4.3CVSS6AI score0.01435EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2018/01/09 9:29 p.m.20 views

CVE-2017-12697

A Man-in-the-Middle issue was discovered in General Motors GM and Shanghai OnStar SOS SOS iOS Client 7.1. Successful exploitation of this vulnerability may allow an attacker to intercept sensitive information when the client connects to the server...

5.9CVSS6.1AI score0.01435EPSS
Exploits0References2
Prion
Prion
added 2018/01/09 9:29 p.m.15 views

Design/Logic Flaw

An Cleartext Storage of Sensitive Information issue was discovered in General Motors GM and Shanghai OnStar SOS SOS iOS Client 7.1. Successful exploitation of this vulnerability may allow a remote attacker to access an encryption key that is stored in cleartext in memory...

5CVSS6.5AI score0.01072EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2018/01/09 9:29 p.m.2 views

CVE-2017-9663

An Cleartext Storage of Sensitive Information issue was discovered in General Motors GM and Shanghai OnStar SOS SOS iOS Client 7.1. Successful exploitation of this vulnerability may allow a remote attacker to access an encryption key that is stored in cleartext in memory...

7.5CVSS5.8AI score0.01072EPSS
Exploits0References2
Prion
Prion
added 2018/01/09 9:29 p.m.15 views

Authentication flaw

An Improper Authentication issue was discovered in General Motors GM and Shanghai OnStar SOS SOS iOS Client 7.1. Successful exploitation of this vulnerability may allow an attacker to subvert security mechanisms and reset a user account password...

4CVSS8.2AI score0.01852EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2018/01/09 9:0 p.m.20 views

CVE-2017-12695

An Improper Authentication issue was discovered in General Motors GM and Shanghai OnStar SOS SOS iOS Client 7.1. Successful exploitation of this vulnerability may allow an attacker to subvert security mechanisms and reset a user account password...

8.4AI score0.01852EPSS
Exploits0References2
Cvelist
Cvelist
added 2018/01/09 9:0 p.m.20 views

CVE-2017-9663

An Cleartext Storage of Sensitive Information issue was discovered in General Motors GM and Shanghai OnStar SOS SOS iOS Client 7.1. Successful exploitation of this vulnerability may allow a remote attacker to access an encryption key that is stored in cleartext in memory...

7.2AI score0.01072EPSS
Exploits0References2
CVE
CVE
added 2018/01/09 9:0 p.m.48 views

CVE-2017-9663

CVE-2017-9663 concerns a vulnerability in the General Motors (GM) and Shanghai OnStar SOS iOS Client (version 7.1) where a sensitive encryption key is stored in cleartext in memory. This cleartext storage of sensitive information could allow a remote attacker to access the key, with a CVSSv3 base...

7.5CVSS7.1AI score0.01072EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2018/01/09 9:0 p.m.23 views

CVE-2017-12697

A Man-in-the-Middle issue was discovered in General Motors GM and Shanghai OnStar SOS SOS iOS Client 7.1. Successful exploitation of this vulnerability may allow an attacker to intercept sensitive information when the client connects to the server...

5.3AI score0.01435EPSS
Exploits0References2
CVE
CVE
added 2018/01/09 9:0 p.m.51 views

CVE-2017-12695

CVE-2017-12695 affects the Shanghai OnStar iOS Client (GM SOS) version 7.1. The vulnerability is described as an Improper Authentication flaw that could allow an attacker to subvert security mechanisms and reset a user account password. Connected sources also reference related issues in the same ...

8.8CVSS8.2AI score0.01852EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2018/01/09 9:0 p.m.42 views

CVE-2017-12697

CVE-2017-12697 affects General Motors and Shanghai OnStar SOS iOS Client version 7.1. The connected documents describe a Man-in-the-Middle vulnerability where the client may transmit or validate data in a way that enables an attacker to intercept sensitive information when the client connects to ...

5.9CVSS5.2AI score0.01435EPSS
Exploits0References2Affected Software1
ICS
ICS
added 2017/08/22 12:0 a.m.70 views

General Motors and Shanghai OnStar (SOS) iOS Client

CVSS v3 9.8 ATTENTION: Remotely exploitable/low skill level to exploit. Vendor: General Motors GM, Shanghai OnStar SOS Equipment: SOS iOS Client Vulnerabilities: Cleartext Storage of Sensitive Information, Man-in-the-Middle, Improper Authentication REPOSTED INFORMATION This advisory was originall...

8.8CVSS7.7AI score0.01852EPSS
Exploits0References2
Rows per page
Query Builder