CVE-2014-5231
Siemens SIMATIC WinCC Sm@rtClient for iOS (pre-1.0.2) is affected by CVE-2014-5231. The issue stems from Insufficiently Protected Credentials (CWE-522): the app stores its password in storage in a way that could allow a local attacker with physical access to extract it. The ICS advisory notes loc...