CVE-2020-15798
CRITICALSIMATIC HMI Comfort Panels and KTP Mobile Panels < V16 Update 3a - Unauthenticated Remote Access via Telnet
Title source: llmDescription
A vulnerability has been identified in SIMATIC HMI Comfort Panels (incl. SIPLUS variants) (All versions < V16 Update 3a), SIMATIC HMI KTP Mobile Panels (All versions < V16 Update 3a), SINAMICS GH150 (All versions), SINAMICS GL150 (with option X30) (All versions), SINAMICS GM150 (with option X30) (All versions), SINAMICS SH150 (All versions), SINAMICS SL150 (All versions), SINAMICS SM120 (All versions), SINAMICS SM150 (All versions), SINAMICS SM150i (All versions). Affected devices with enabled telnet service do not require authentication for this service. This could allow a remote attacker to gain full access to the device. (ZDI-CAN-12046)
References (3)
Core 3
Core References
Vendor Advisory x_refsource_misc
https://cert-portal.siemens.com/productcert/pdf/ssa-520004.pdf
Third Party Advisory, US Government Resource x_refsource_misc
https://us-cert.cisa.gov/ics/advisories/icsa-21-033-02
Patch, Vendor Advisory x_refsource_confirm
https://cert-portal.siemens.com/productcert/pdf/ssa-752103.pdf
Scores
CVSS v3
9.8
EPSS
0.0167
EPSS Percentile
82.3%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-306
Status
published
Products (12)
siemens/simatic_hmi_comfort_panels_firmware
16.0 (4 CPE variants)
siemens/simatic_hmi_comfort_panels_firmware
< 16.0
siemens/simatic_hmi_ktp_mobile_panels_firmware
16.0 (4 CPE variants)
siemens/simatic_hmi_ktp_mobile_panels_firmware
< 16.0
siemens/sinamics_gh150_firmware
siemens/sinamics_gl150_firmware
siemens/sinamics_gm150_firmware
siemens/sinamics_sh150_firmware
siemens/sinamics_sl150_firmware
siemens/sinamics_sm120_firmware
... and 2 more
Published
Feb 09, 2021
Tracked Since
Feb 18, 2026