Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistSiemensCVELIST:CVE-2018-4847
HistoryApr 23, 2018 - 4:00 p.m.

CVE-2018-4847

2018-04-2316:00:00
CWE-538
siemens
www.cve.org
4

AI Score

4

Confidence

High

EPSS

0.001

Percentile

21.9%

JSON

A vulnerability has been identified in SIMATIC WinCC OA Operator iOS App (All versions < V1.4). Insufficient protection of sensitive information (e.g. session key for accessing server) in Siemens WinCC OA Operator iOS app could allow an attacker with physical access to the mobile device to read unencrypted data from the app’s directory. Siemens provides mitigations to resolve the security issue.

CNA Affected

[
  {
    "product": "SIMATIC WinCC OA Operator iOS App",
    "vendor": "Siemens AG",
    "versions": [
      {
        "status": "affected",
        "version": "All versions < V1.4"
      }
    ]
  }
]

Related

nvd 1
ics 1
cve 1
prion 1
nvd
nvd
CVE-2018-4847
2018-04-23 16:29:00
ics
ics
Siemens SIMATIC WinCC OA Operator IOS App (Update A)
2018-10-09 12:00:00
cve
cve
CVE-2018-4847
2018-04-23 16:29:00
prion
prion
Security feature bypass
2018-04-23 16:29:00

AI Score

4

Confidence

High

EPSS

0.001

Percentile

21.9%

JSON
Related for CVELIST:CVE-2018-4847
nvd1ics1cve1prion1