Improper Authentication in General Motors (GM) and Shanghai OnStar (SOS) SOS iOS Client 7.1 Allows Password Reset

Improper Authentication in General Motors (GM) and Shanghai OnStar (SOS) SOS iOS Client 7.1 Allows Password Reset

CVE-2017-12695 · MEDIUM Severity

AV:N/AC:L/AU:S/C:N/I:P/A:N

An Improper Authentication issue was discovered in General Motors (GM) and Shanghai OnStar (SOS) SOS iOS Client 7.1. Successful exploitation of this vulnerability may allow an attacker to subvert security mechanisms and reset a user account password.

Learn more about our Cis Benchmark Audit For Apple Ios.