CVE-2014-5231
SIMATIC WinCC Sm@rtClient < 1.0.2 - Unauthenticated Password Exposure via Local Storage
Title source: llmDescription
The Siemens SIMATIC WinCC Sm@rtClient app before 1.0.2 for iOS allows physically proximate attackers to extract the password from storage via unspecified vectors.
References (2)
Core 2
Core References
Vendor Advisory x_refsource_confirm
http://www.siemens.com/innovation/pool/de/forschungsfelder/siemens_security_advisory_ssa-311299.pdf
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1031546
Scores
EPSS
0.0006
EPSS Percentile
19.7%
Details
CWE
CWE-200
Status
published
Products (1)
siemens/simatic_wincc_sm\@rtclient
< 1.0
Published
Jan 14, 2015
Tracked Since
Feb 18, 2026