VYPR
Unrated severityNVD Advisory· Published Mar 7, 2015· Updated Jun 17, 2026

CVE-2015-1595

CVE-2015-1595

Description

The Siemens SPCanywhere application for Android and iOS does not use encryption during lookups of system ID to IP address mappings, which allows man-in-the-middle attackers to discover alarm IP addresses and spoof servers by intercepting the client-server data stream.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3
  • cpe:2.3:a:siemens:spcanywhere:*:*:*:*:*:android:*:*+ 2 more
    • cpe:2.3:a:siemens:spcanywhere:*:*:*:*:*:android:*:*range: <=1.4.1
    • cpe:2.3:a:siemens:spcanywhere:*:*:*:*:*:iphone_os:*:*range: <=1.4
    • (no CPE)

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.