N/A

An Cleartext Storage of Sensitive Information issue was discovered in General Motors (GM) and Shanghai OnStar (SOS) SOS iOS Client 7.1. Successful exploitation of this vulnerability may allow a remote attacker to access an encryption key that is stored in cleartext in memory.

N/A

敏感数据的明文存储

General Motors和Shanghai OnStar iOS Client 安全漏洞

General Motors（GM）和Shanghai OnStar（SOS）iOS Client是一款基于iOS平台的在机动车发生碰撞时为驾驶员拨打SOS求救电话的应用程序。 GM和SOS iOS Client 7.1版本中存在存在安全漏洞，该漏洞源于敏感信息被以明文的形式储存。远程攻击者可利用该漏洞获取以明文形式储存在内存中的加密密钥。

N/A

N/A