CRITICAL🇬🇧 English

CVE-2020-15798

CVSS 9.8v3.1pub. 2021-02-09upd. 2026-06-02

A vulnerability has been identified in SIMATIC HMI Comfort Panels (incl. SIPLUS variants) (All versions < V16 Update 3a), SIMATIC HMI KTP Mobile Panels (All versions < V16 Update 3a), SINAMICS GH150 (All versions), SINAMICS GL150 (with option X30) (All versions), SINAMICS GM150 (with option X30) (All versions), SINAMICS SH150 (All versions), SINAMICS SL150 (All versions), SINAMICS SM120 (All versions), SINAMICS SM150 (All versions), SINAMICS SM150i (All versions). Affected devices with enabled telnet service do not require authentication for this service. This could allow a remote attacker to gain full access to the device. (ZDI-CAN-12046)

oryginał EN
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Siemens Simatic Hmi Comfort Panels

    HW
    Siemens
    wszystkie wersje
  • Siemens Simatic Hmi Comfort Panels Firmware

    OS
    Siemens
    16.0< 16.0
  • Siemens Simatic Hmi Ktp Mobile Panels

    HW
    Siemens
    wszystkie wersje
  • Siemens Simatic Hmi Ktp Mobile Panels Firmware

    OS
    Siemens
    16.0< 16.0
  • Siemens Sinamics Gh150

    HW
    Siemens
    wszystkie wersje
  • Siemens Sinamics Gh150 Firmware

    OS
    Siemens
    wszystkie wersje
  • Siemens Sinamics Gl150

    HW
    Siemens
    wszystkie wersje
  • Siemens Sinamics Gl150 Firmware

    OS
    Siemens
    wszystkie wersje
  • Siemens Sinamics Gm150

    HW
    Siemens
    wszystkie wersje
  • Siemens Sinamics Gm150 Firmware

    OS
    Siemens
    wszystkie wersje
  • Siemens Sinamics Sh150

    HW
    Siemens
    wszystkie wersje
  • Siemens Sinamics Sh150 Firmware

    OS
    Siemens
    wszystkie wersje
  • Siemens Sinamics Sl150

    HW
    Siemens
    wszystkie wersje
  • Siemens Sinamics Sl150 Firmware

    OS
    Siemens
    wszystkie wersje
  • Siemens Sinamics Sm120

    HW
    Siemens
    wszystkie wersje
  • Siemens Sinamics Sm120 Firmware

    OS
    Siemens
    wszystkie wersje
  • Siemens Sinamics Sm150

    HW
    Siemens
    wszystkie wersje
  • Siemens Sinamics Sm150 Firmware

    OS
    Siemens
    wszystkie wersje
  • Siemens Sinamics Sm150i

    HW
    Siemens
    wszystkie wersje
  • Siemens Sinamics Sm150i Firmware

    OS
    Siemens
    wszystkie wersje
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
CWE
Referencje

Powiązane podatności

CVE-2021-31337CRITICAL9.8ten sam produkt

The Telnet service of the SIMATIC HMI Comfort Panels system component in affected products does not require au...

CVE-2021-27388CRITICAL9.8ten sam produkt

SINAMICS medium voltage routable products are affected by a vulnerability in the Sm@rtServer component for rem...

CVE-2021-27384CRITICAL9.8ten sam produkt

A vulnerability has been identified in SIMATIC HMI Comfort Outdoor Panels V15 7\" & 15\" (incl. SIPLUS variant...

CVE-2020-15786CRITICAL9.8ten sam produkt

A vulnerability has been identified in SIMATIC HMI Basic Panels 2nd Generation (incl. SIPLUS variants) (All ve...

CVE-2019-6572CRITICAL9.1ten sam produkt

A vulnerability has been identified in SIMATIC HMI Comfort Panels 4" - 22" (All versions < V15.1 Update 1), SI...

CVE-2020-15798 — CRITICAL 9.8 | CVEbaza.pl