Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A vulnerability has been identified in SIMATIC WinCC OA Operator iOS App (All versions < V1.4). Insufficient protection of sensitive information (e.g. session key for accessing server) in Siemens WinCC OA Operator iOS app could allow an attacker with physical access to the mobile device to read unencrypted data from the app's directory. Siemens provides mitigations to resolve the security issue.
CVSS Information
N/A
Vulnerability Type
文件和路径信息暴露
Vulnerability Title
Siemens SIMATIC WinCC OA Operator iOS App 安全漏洞
Vulnerability Description
Siemens SIMATIC WinCC OA Operator iOS App是德国西门子(Siemens)公司的一套基于iOS平台的SCADA系统控制应用程序。 Siemens SIMATIC WinCC OA Operator iOS App中存在安全漏洞,该漏洞源于程序没有充分的保护敏感信息(例如:用于访问服务器的会话密钥)。攻击者可利用该漏洞读取该应用程序目录中未加密的数据。
CVSS Information
N/A
Vulnerability Type
N/A