← Back

Simatic Wincc Oa Operator

simatic_wincc_oa_operator

Vendor: Siemens • 1 CVE

CVEs (1)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2018-4847
1Siemens
1Simatic Wincc Oa Operator
Nov 21, 2024
Apr 23, 2018
N/A· v4
4.6 MEDIUM· v3
2.1 LOW· v2
A vulnerability has been identified in SIMATIC WinCC OA Operator iOS App (All versions < V1.4). Insufficient protection of sensitive information (e.g. session key for accessing server) in Siemens WinCC OA Operator iOS ap...Show more
A vulnerability has been identified in SIMATIC WinCC OA Operator iOS App (All versions < V1.4). Insufficient protection of sensitive information (e.g. session key for accessing server) in Siemens WinCC OA Operator iOS app could allow an attacker with physical access to the mobile device to read unencrypted data from the app's directory. Siemens provides mitigations to resolve the security issue.Show less