CVE-2017-9663

CVE-2017-9663

Vendor N/A
Product General Motors and Shanghai OnStar (SOS) iOS Client
Weakness CWE-312 · Cleartext storage
Published January 9, 2018
Last update August 5, 2024

CVSS base score

What the vulnerability does

01Description

An Cleartext Storage of Sensitive Information issue was discovered in General Motors (GM) and Shanghai OnStar (SOS) SOS iOS Client 7.1. Successful exploitation of this vulnerability may allow a remote attacker to access an encryption key that is stored in cleartext in memory.

Key dates

02Disclosure timeline

January 9, 2018 CVE published
August 5, 2024 Record updated