CVE-2014-5232
SIMATIC WinCC Sm@rtClient < 1.0.2 - Local Password Bypass via Background App State
Title source: llmDescription
The Siemens SIMATIC WinCC Sm@rtClient app before 1.0.2 for iOS allows local users to bypass an intended application-password requirement by leveraging the running of the app in the background state.
References (2)
Core 2
Core References
Vendor Advisory x_refsource_confirm
http://www.siemens.com/innovation/pool/de/forschungsfelder/siemens_security_advisory_ssa-311299.pdf
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1031546
Scores
EPSS
0.0005
EPSS Percentile
17.2%
Details
CWE
CWE-264
Status
published
Products (1)
siemens/simatic_wincc_sm\@rtclient
< 1.0
Published
Jan 14, 2015
Tracked Since
Feb 18, 2026