CVE-2017-9663

Summary

An Cleartext Storage of Sensitive Information issue was discovered in General Motors (GM) and Shanghai OnStar (SOS) SOS iOS Client 7.1. Successful exploitation of this vulnerability may allow a remote attacker to access an encryption key that is stored in cleartext in memory.

Affected Software

VendorProductVersion RangeStatus
n/aGeneral Motors and Shanghai OnStar (SOS) iOS ClientGeneral Motors and Shanghai OnStar (SOS) iOS Clientaffected

Weaknesses

  • CWE-312: CWE-312

ADP Enrichment

CVE Program Container

Additional References

References