Information disclosure in Apple Iphone_os
CVE-2014-5233
The Siemens SIMATIC WinCC Sm@rtClient app before 1.0.2 for iOS allows physically proximate attackers to discover Sm@rtServer credentials by leveraging an error in the credential-processing mechanism.
Vulnerability class: Information Disclosure
EPSS: 0.001 (19.9th percentile) — read the EPSS interpretation.
Affected products
- Apple Iphone_os
- Siemens Simatic_wincc_sm\@rtclient
- N/a — versions n/a
Weakness classification (CWE)
References
- cve@mitre.org (x_refsource_CONFIRM, Vendor Advisory)
- 1031546 (vdb-entry, x_refsource_SECTRACK)