Описание
The Siemens SIMATIC WinCC Sm@rtClient and Sm@rtClient Lite applications before 01.00.01.00 for Android do not properly store passwords, which allows physically proximate attackers to obtain sensitive information via unspecified vectors.
Ссылки
- PatchVendor Advisory
- Third Party AdvisoryUS Government Resource
- PatchVendor Advisory
- Third Party AdvisoryUS Government Resource
Уязвимые конфигурации
Конфигурация 1Версия до 1.0 (включая)Версия до 1.0 (включая)
Одно из
cpe:2.3:a:siemens:simatic_wincc_sm\@rtclient:*:*:*:*:*:android:*:*
cpe:2.3:a:siemens:simatic_wincc_sm\@rtclient_lite:*:*:*:*:*:android:*:*
EPSS
Процентиль: 27%
0.00097
Низкий
2.1 Low
CVSS2
Дефекты
CWE-200
Связанные уязвимости
github
больше 3 лет назад
The Siemens SIMATIC WinCC Sm@rtClient and Sm@rtClient Lite applications before 01.00.01.00 for Android do not properly store passwords, which allows physically proximate attackers to obtain sensitive information via unspecified vectors.
EPSS
Процентиль: 27%
0.00097
Низкий
2.1 Low
CVSS2
Дефекты
CWE-200