#VU12076 Information disclosure in Simatic WinCC OA iOS App - CVE-2018-4847
Published: April 19, 2018 / Updated: April 21, 2018
Vulnerability identifier: #VU12076
Vulnerability risk: Low
CVSSv4.0: CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2018-4847
CWE-ID: CWE-538
Exploitation vector: Local access
Exploit availability:
No public exploit available
Vulnerable software:
Simatic WinCC OA iOS App
Simatic WinCC OA iOS App
Software vendor:
Siemens
Siemens
Description
The vulnerability allows a physical attacker to obtain potentially sensitive information.
The vulnerability exists due to file and directory information exposure. A remote attacker with physical access to the mobile device can read unencrypted sensitive data from the app’s directory.
Remediation
Siemens has identified the following specific workarounds and mitigations that users can apply to reduce the risk:
- Toggle off the button to save password while logging in, and logout after every work session.
- Follow the SIMATIC WinCC OA Security Guideline (available at https://portal.etm.at/index.php? option=com_phocadownload&view=category&id=52:security&Itemid=81) for maintaining a secured SIMATIC WinCC OA environment.
- Siemens does not recommend to use the app in high security areas.