Skip to main content

Simatic Wincc Sm Rtclient

6 CVEs product

Monthly

CVE-2017-6871 MEDIUM This Month

A vulnerability was discovered in Siemens SIMATIC WinCC Sm@rtClient for Android (All versions before V1.0.2.2) and SIMATIC WinCC Sm@rtClient for Android Lite (All versions before V1.0.2.2). Rated medium severity (CVSS 5.4), this vulnerability is low attack complexity. No vendor patch available.

Siemens Google Authentication Bypass Simatic Wincc Sm Rtclient Simatic Wincc Sm Rtclient Lite
NVD
CVSS 3.0
5.4
EPSS
0.1%
CVE-2017-6870 HIGH This Week

A vulnerability was discovered in Siemens SIMATIC WinCC Sm@rtClient for Android (All versions before V1.0.2.2). Rated high severity (CVSS 7.4), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Siemens Google Information Disclosure Simatic Wincc Sm Rtclient
NVD
CVSS 3.0
7.4
EPSS
0.2%
CVE-2015-5084 LOW PATCH Monitor

The Siemens SIMATIC WinCC Sm@rtClient and Sm@rtClient Lite applications before 01.00.01.00 for Android do not properly store passwords, which allows physically proximate attackers to obtain sensitive. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Google Information Disclosure Siemens Simatic Wincc Sm Rtclient Simatic Wincc Sm Rtclient Lite
NVD
CVSS 2.0
2.1
EPSS
0.1%
CVE-2014-5233 LOW Monitor

The Siemens SIMATIC WinCC Sm@rtClient app before 1.0.2 for iOS allows physically proximate attackers to discover Sm@rtServer credentials by leveraging an error in the credential-processing mechanism. Rated low severity (CVSS 1.9). No vendor patch available.

Apple Information Disclosure Siemens Simatic Wincc Sm Rtclient
NVD
CVSS 2.0
1.9
EPSS
0.1%
CVE-2014-5232 LOW Monitor

The Siemens SIMATIC WinCC Sm@rtClient app before 1.0.2 for iOS allows local users to bypass an intended application-password requirement by leveraging the running of the app in the background state. Rated low severity (CVSS 1.9). No vendor patch available.

Apple Privilege Escalation Siemens Simatic Wincc Sm Rtclient
NVD
CVSS 2.0
1.9
EPSS
0.1%
CVE-2014-5231 LOW Monitor

The Siemens SIMATIC WinCC Sm@rtClient app before 1.0.2 for iOS allows physically proximate attackers to extract the password from storage via unspecified vectors. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. No vendor patch available.

Apple Information Disclosure Siemens Simatic Wincc Sm Rtclient
NVD
CVSS 2.0
2.1
EPSS
0.1%
EPSS 0% CVSS 5.4
MEDIUM This Month

A vulnerability was discovered in Siemens SIMATIC WinCC Sm@rtClient for Android (All versions before V1.0.2.2) and SIMATIC WinCC Sm@rtClient for Android Lite (All versions before V1.0.2.2). Rated medium severity (CVSS 5.4), this vulnerability is low attack complexity. No vendor patch available.

Siemens Google Authentication Bypass +2
NVD
EPSS 0% CVSS 7.4
HIGH This Week

A vulnerability was discovered in Siemens SIMATIC WinCC Sm@rtClient for Android (All versions before V1.0.2.2). Rated high severity (CVSS 7.4), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Siemens Google Information Disclosure +1
NVD
EPSS 0% CVSS 2.1
LOW PATCH Monitor

The Siemens SIMATIC WinCC Sm@rtClient and Sm@rtClient Lite applications before 01.00.01.00 for Android do not properly store passwords, which allows physically proximate attackers to obtain sensitive. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Google Information Disclosure Siemens +2
NVD
EPSS 0% CVSS 1.9
LOW Monitor

The Siemens SIMATIC WinCC Sm@rtClient app before 1.0.2 for iOS allows physically proximate attackers to discover Sm@rtServer credentials by leveraging an error in the credential-processing mechanism. Rated low severity (CVSS 1.9). No vendor patch available.

Apple Information Disclosure Siemens +1
NVD
EPSS 0% CVSS 1.9
LOW Monitor

The Siemens SIMATIC WinCC Sm@rtClient app before 1.0.2 for iOS allows local users to bypass an intended application-password requirement by leveraging the running of the app in the background state. Rated low severity (CVSS 1.9). No vendor patch available.

Apple Privilege Escalation Siemens +1
NVD
EPSS 0% CVSS 2.1
LOW Monitor

The Siemens SIMATIC WinCC Sm@rtClient app before 1.0.2 for iOS allows physically proximate attackers to extract the password from storage via unspecified vectors. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. No vendor patch available.

Apple Information Disclosure Siemens +1
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy