CVE-2017-12697
Severity CVSS v4.0:
Pending analysis
Type:
CWE-300
Channel Accessible by Non-Endpoint
Publication date:
09/01/2018
Last modified:
17/06/2026
Description
A Man-in-the-Middle issue was discovered in General Motors (GM) and Shanghai OnStar (SOS) SOS iOS Client 7.1. Successful exploitation of this vulnerability may allow an attacker to intercept sensitive information when the client connects to the server.
Impact
Base Score 3.x
5.90
Severity 3.x
MEDIUM
Base Score 2.0
4.30
Severity 2.0
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:a:gm:shanghai_onstar:7.1:*:*:*:*:iphone_os:*:* |
To consult the complete list of CPE names with products and versions, see this page



