CVE-2017-12695

Summary

An Improper Authentication issue was discovered in General Motors (GM) and Shanghai OnStar (SOS) SOS iOS Client 7.1. Successful exploitation of this vulnerability may allow an attacker to subvert security mechanisms and reset a user account password.

Affected Software

VendorProductVersion RangeStatus
n/aGeneral Motors and Shanghai OnStar (SOS) iOS ClientGeneral Motors and Shanghai OnStar (SOS) iOS Clientaffected

Weaknesses

  • CWE-287: CWE-287

ADP Enrichment

CVE Program Container

Additional References

References