A vulnerability has been identified in SIMATIC HMI Basic Panels 2nd Generation (incl. SIPLUS variants) (All versions < V16), SIMATIC HMI Comfort Panels (incl. SIPLUS variants) (All versions <= V16), SIMATIC HMI Mobile Panels (All versions <= V16), SIMATIC HMI Unified Comfort Panels (All versions <= V16). Affected devices insufficiently block excessive authentication attempts. This could allow a remote attacker to discover user passwords and obtain access to the Sm@rt Server via a brute-force attack.
References
Link | Resource |
---|---|
https://cert-portal.siemens.com/productcert/pdf/ssa-542525.pdf | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: siemens
Published: 2020-09-09T18:11:39
Updated: 2021-06-08T19:47:15
Reserved: 2020-07-15T00:00:00
Link: CVE-2020-15786
JSON object: View
NVD Information
Status : Modified
Published: 2020-09-09T19:15:19.787
Modified: 2021-06-08T20:15:07.767
Link: CVE-2020-15786
JSON object: View
Redhat Information
No data.
CWE