CVE-2020-15798
Summary
| CVE | CVE-2020-15798 |
|---|---|
| State | PUBLISHED |
| Assigner | siemens |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2021-02-09 17:15:13 UTC |
| Updated | 2026-06-02 20:16:25 UTC |
| Description | A vulnerability has been identified in SIMATIC HMI Comfort Panels (incl. SIPLUS variants) (All versions < V16 Update 3a), SIMATIC HMI KTP Mobile Panels (All versions < V16 Update 3a), SINAMICS GH150 (All versions), SINAMICS GL150 (with option X30) (All versions), SINAMICS GM150 (with option X30) (All versions), SINAMICS SH150 (All versions), SINAMICS SL150 (All versions), SINAMICS SM120 (All versions), SINAMICS SM150 (All versions), SINAMICS SM150i (All versions). Affected devices with enabled telnet service do not require authentication for this service. This could allow a remote attacker to gain full access to the device. (ZDI-CAN-12046) |
Risk And Classification
Primary CVSS: v3.1 9.8 CRITICAL from [email protected]
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS: 0.016690000 probability, percentile 0.824640000 (date 2026-06-08)
Problem Types: CWE-306 | CWE-306 CWE-306: Missing Authentication for Critical Function
| Version | Source | Type | Score | Severity | Vector |
|---|---|---|---|---|---|
| 3.1 | [email protected] | Primary | 9.8 | CRITICAL | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
| 3.1 | ADP | DECLARED | 9.8 | CRITICAL | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
| 3.1 | 134c704f-9b21-4f2e-91b3-4a467353bcc0 | Secondary | 9.8 | CRITICAL | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
| 2.0 | [email protected] | Primary | 9.3 | AV:N/AC:M/Au:N/C:C/I:C/A:C |
CVSS v3.1 Breakdown
Attack Vector
NetworkAttack Complexity
LowPrivileges Required
NoneUser Interaction
NoneScope
UnchangedConfidentiality
HighIntegrity
HighAvailability
HighCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CVSS v2.0 Breakdown
Access Vector
NetworkAccess Complexity
MediumAuthentication
NoneConfidentiality
CompleteIntegrity
CompleteAvailability
CompleteAV:N/AC:M/Au:N/C:C/I:C/A:C
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Hardware | Siemens | Simatic Hmi Comfort Panels | - | All | All | All |
| Operating System | Siemens | Simatic Hmi Comfort Panels Firmware | All | All | All | All |
| Operating System | Siemens | Simatic Hmi Comfort Panels Firmware | 16.0 | - | All | All |
| Operating System | Siemens | Simatic Hmi Comfort Panels Firmware | 16.0 | update1 | All | All |
| Operating System | Siemens | Simatic Hmi Comfort Panels Firmware | 16.0 | update2 | All | All |
| Operating System | Siemens | Simatic Hmi Comfort Panels Firmware | 16.0 | update3 | All | All |
| Hardware | Siemens | Simatic Hmi Ktp Mobile Panels | - | All | All | All |
| Operating System | Siemens | Simatic Hmi Ktp Mobile Panels Firmware | All | All | All | All |
| Operating System | Siemens | Simatic Hmi Ktp Mobile Panels Firmware | 16.0 | - | All | All |
| Operating System | Siemens | Simatic Hmi Ktp Mobile Panels Firmware | 16.0 | update1 | All | All |
| Operating System | Siemens | Simatic Hmi Ktp Mobile Panels Firmware | 16.0 | update2 | All | All |
| Operating System | Siemens | Simatic Hmi Ktp Mobile Panels Firmware | 16.0 | update3 | All | All |
| Hardware | Siemens | Sinamics Gh150 | - | All | All | All |
| Operating System | Siemens | Sinamics Gh150 Firmware | - | All | All | All |
| Hardware | Siemens | Sinamics Gl150 | - | All | All | All |
| Operating System | Siemens | Sinamics Gl150 Firmware | - | All | All | All |
| Hardware | Siemens | Sinamics Gm150 | - | All | All | All |
| Operating System | Siemens | Sinamics Gm150 Firmware | - | All | All | All |
| Hardware | Siemens | Sinamics Sh150 | - | All | All | All |
| Operating System | Siemens | Sinamics Sh150 Firmware | - | All | All | All |
| Hardware | Siemens | Sinamics Sl150 | - | All | All | All |
| Operating System | Siemens | Sinamics Sl150 Firmware | - | All | All | All |
| Hardware | Siemens | Sinamics Sm120 | - | All | All | All |
| Operating System | Siemens | Sinamics Sm120 Firmware | - | All | All | All |
| Hardware | Siemens | Sinamics Sm150 | - | All | All | All |
| Hardware | Siemens | Sinamics Sm150i | - | All | All | All |
| Operating System | Siemens | Sinamics Sm150i Firmware | - | All | All | All |
| Operating System | Siemens | Sinamics Sm150 Firmware | - | All | All | All |
Vendor Declared Affected Products
| Source | Vendor | Product | Version | Platforms |
|---|---|---|---|---|
| CNA | Siemens | SIMATIC HMI Comfort Panels Incl. SIPLUS Variants | affected All versions < V16 Update 3a | Not specified |
| CNA | Siemens | SIMATIC HMI KTP Mobile Panels | affected All versions < V16 Update 3a | Not specified |
| CNA | Siemens | SINAMICS GH150 | affected All versions | Not specified |
| CNA | Siemens | SINAMICS GL150 With Option X30 | affected All versions | Not specified |
| CNA | Siemens | SINAMICS GM150 With Option X30 | affected All versions | Not specified |
| CNA | Siemens | SINAMICS SH150 | affected All versions | Not specified |
| CNA | Siemens | SINAMICS SL150 | affected All versions | Not specified |
| CNA | Siemens | SINAMICS SM120 | affected All versions | Not specified |
| CNA | Siemens | SINAMICS SM150 | affected All versions | Not specified |
| CNA | Siemens | SINAMICS SM150i | affected All versions | Not specified |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Siemens SIMATIC HMI Comfort Panels & SIMATIC HMI KTP Mobile Panels | CISA | af854a3a-2127-422b-91ae-364da2661108 | us-cert.cisa.gov | Third Party Advisory, US Government Resource |
| cert-portal.siemens.com/productcert/pdf/ssa-752103.pdf | af854a3a-2127-422b-91ae-364da2661108 | cert-portal.siemens.com | Patch, Vendor Advisory |
| cert-portal.siemens.com/productcert/pdf/ssa-520004.pdf | af854a3a-2127-422b-91ae-364da2661108 | cert-portal.siemens.com | Vendor Advisory |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.