2 matches found
CVE-2014-5233
Siemens SIMATIC WinCC Sm@rtClient for iOS (pre-1.0.2) has an information-credential flaw: an error in the credential-processing/handling allows a physically proximate attacker with local access to extract Sm@rtServer credentials. The issue is tied to the app’s credential-storage/processing mechan...
CVE-2014-5232
Siemens SIMATIC WinCC Sm@rtClient for iOS is vulnerable prior to version 1.0.2 due to insufficiently protected credentials and improper authentication. When the app resumes from the background, an attacker with local access could bypass the required application password, potentially gaining acces...