Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMitreCVE-2014-5233
HistoryJan 14, 2015 - 11:59 a.m.

CVE-2014-5233

2015-01-1411:59:02
CWE-200
mitre
web.nvd.nist.gov
31
siemens
simatic
wincc
sm@rtclient
ios
security vulnerability
credential-processing mechanism
cve-2014-5233
nvd

CVSS2

1.9

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:M/Au:N/C:P/I:N/A:N

AI Score

6.4

Confidence

Low

EPSS

0.001

Percentile

29.0%

JSON

The Siemens SIMATIC WinCC Sm@rtClient app before 1.0.2 for iOS allows physically proximate attackers to discover Sm@rtServer credentials by leveraging an error in the credential-processing mechanism.

Affected configurations

Nvd
Node
siemenssimatic_wincc_sm\@rtclientRange1.0
AND
appleiphone_osMatch-
VendorProductVersionCPE
siemenssimatic_wincc_sm\@rtclient*cpe:2.3:a:siemens:simatic_wincc_sm\@rtclient:*:*:*:*:*:*:*:*
appleiphone_os-cpe:2.3:o:apple:iphone_os:-:*:*:*:*:*:*:*

Related

cvelist 1
prion 1
nvd 1
ics 1
cvelist
cvelist
CVE-2014-5233
2015-01-14 11:00:00
prion
prion
Code injection
2015-01-14 11:59:00
nvd
nvd
CVE-2014-5233
2015-01-14 11:59:02
ics
ics
Siemens SIMATIC WinCC Sm@rtClient iOS Application Authentication Vulnerabilities
2018-08-29 12:00:00

CVSS2

1.9

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:M/Au:N/C:P/I:N/A:N

AI Score

6.4

Confidence

Low

EPSS

0.001

Percentile

29.0%

JSON
Related for CVE-2014-5233
cvelist1prion1nvd1ics1