CVE-2020-15798
high-risk
Published 2021-02-09
A vulnerability has been identified in SIMATIC HMI Comfort Panels (incl. SIPLUS variants) (All versions < V16 Update 3a), SIMATIC HMI KTP Mobile Panels (All versions < V16 Update 3a), SINAMICS GH150 (All versions), SINAMICS GL150 (with option X30) (All versions), SINAMICS GM150 (with option X30) (All versions), SINAMICS SH150 (All versions), SINAMICS SL150 (All versions), SINAMICS SM120 (All versions), SINAMICS SM150 (All versions), SINAMICS SM150i (All versions). Affected devices with enabled telnet service do not require authentication for this service. This could allow a remote attacker to gain full access to the device. (ZDI-CAN-12046)
Do I need to act?
~
1.7% chance of exploitation in next 30 days
EPSS score — moderate exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
9
CVSS 9.8/10
Critical
NETWORK
/ LOW complexity
Affected Products (18)
Simatic Hmi Comfort Panels Firmware
Simatic Hmi Comfort Panels Firmware
Simatic Hmi Comfort Panels Firmware
Simatic Hmi Comfort Panels Firmware
Simatic Hmi Comfort Panels Firmware
Simatic Hmi Ktp Mobile Panels Firmware
Simatic Hmi Ktp Mobile Panels Firmware
Simatic Hmi Ktp Mobile Panels Firmware
Simatic Hmi Ktp Mobile Panels Firmware
Simatic Hmi Ktp Mobile Panels Firmware
Sinamics Gh150 Firmware
Sinamics Gl150 Firmware
Sinamics Gm150 Firmware
Sinamics Sh150 Firmware
Sinamics Sl150 Firmware
Sinamics Sm150 Firmware
Sinamics Sm120 Firmware
Sinamics Sm150I Firmware
Affected Vendors
References (6)
Vendor Advisory
https://cert-portal.siemens.com/productcert/pdf/ssa-520004.pdf
Third Party Advisory
https://us-cert.cisa.gov/ics/advisories/icsa-21-033-02
Vendor Advisory
https://cert-portal.siemens.com/productcert/pdf/ssa-520004.pdf
Third Party Advisory
https://us-cert.cisa.gov/ics/advisories/icsa-21-033-02
55
/ 100
high-risk
Severity
32/34 · Critical
Exploitability
4/34 · Minimal
Exposure
19/34 · Moderate