2 matches found
CVE-2018-4847
The CVE concerns SIMATIC WinCC OA Operator iOS App (all versions prior to v1.4). Affected component: the app’s data directory where sensitive information (e.g., session keys) can be read if an attacker has physical access. Root cause: Insufficient protection of sensitive information leading to in...
Siemens SIMATIC WinCC OA Operator IOS App (Update A)
1. EXECUTIVE SUMMARY CVSS v3 4.0 Vendor : Siemens Equipment : SIMATIC WinCC OA iOS App Vulnerability : File and Directory Information Exposure. 2 UPDATE INFORMATION This updated advisory is a follow-up to the original advisory titled ICSA-18-109-01 Siemens SIMATIC WinCC OA Operator iOS App that...