CVE-2020-15798

CRITICAL

SIMATIC HMI Comfort Panels and KTP Mobile Panels < V16 Update 3a - Unauthenticated Remote Access via Telnet

Title source: llm
STIX 2.1

Description

A vulnerability has been identified in SIMATIC HMI Comfort Panels (incl. SIPLUS variants) (All versions < V16 Update 3a), SIMATIC HMI KTP Mobile Panels (All versions < V16 Update 3a), SINAMICS GH150 (All versions), SINAMICS GL150 (with option X30) (All versions), SINAMICS GM150 (with option X30) (All versions), SINAMICS SH150 (All versions), SINAMICS SL150 (All versions), SINAMICS SM120 (All versions), SINAMICS SM150 (All versions), SINAMICS SM150i (All versions). Affected devices with enabled telnet service do not require authentication for this service. This could allow a remote attacker to gain full access to the device. (ZDI-CAN-12046)

References (3)

Core 3
Core References
Third Party Advisory, US Government Resource x_refsource_misc
https://us-cert.cisa.gov/ics/advisories/icsa-21-033-02
Patch, Vendor Advisory x_refsource_confirm
https://cert-portal.siemens.com/productcert/pdf/ssa-752103.pdf

Scores

CVSS v3 9.8
EPSS 0.0518
EPSS Percentile 91.5%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable yes
Technical Impact total

Details

CWE
CWE-306
Status published
Products (22)
Siemens/SIMATIC HMI Comfort Panels (incl. SIPLUS variants) All versions < V16 Update 3a
Siemens/SIMATIC HMI KTP Mobile Panels All versions < V16 Update 3a
siemens/simatic_hmi_comfort_panels_firmware 16.0 (4 CPE variants)
siemens/simatic_hmi_comfort_panels_firmware < 16.0
siemens/simatic_hmi_ktp_mobile_panels_firmware 16.0 (4 CPE variants)
siemens/simatic_hmi_ktp_mobile_panels_firmware < 16.0
Siemens/SINAMICS GH150 All versions
Siemens/SINAMICS GL150 (with option X30) All versions
Siemens/SINAMICS GM150 (with option X30) All versions
Siemens/SINAMICS SH150 All versions
... and 12 more
Published Feb 09, 2021
Tracked Since Feb 18, 2026