CVE-2017-12695

CVE-2017-12695

Vendor N/A
Product General Motors and Shanghai OnStar (SOS) iOS Client
Weakness CWE-287 · Improper authentication
Published January 9, 2018
Last update August 5, 2024

CVSS base score

What the vulnerability does

01Description

An Improper Authentication issue was discovered in General Motors (GM) and Shanghai OnStar (SOS) SOS iOS Client 7.1. Successful exploitation of this vulnerability may allow an attacker to subvert security mechanisms and reset a user account password.

Key dates

02Disclosure timeline

January 9, 2018 CVE published
August 5, 2024 Record updated