CVE-2020-15786
Published: Sep 9, 2020
Modified: Jun 2, 2026
Description
A vulnerability has been identified in SIMATIC HMI Basic Panels 2nd Generation (incl. SIPLUS variants) (All versions < V16), SIMATIC HMI Comfort Panels (incl. SIPLUS variants) (All versions <= V16), SIMATIC HMI Mobile Panels (All versions <= V16), SIMATIC HMI Unified Comfort Panels (All versions <= V16). Affected devices insufficiently block excessive authentication attempts. This could allow a remote attacker to discover user passwords and obtain access to the Sm@rt Server via a brute-force attack.
| Vendor | Product | Versions |
|---|---|---|
Siemens | SIMATIC HMI Basic Panels 2nd Generation (incl. SIPLUS variants) | affected All versions < V16 |
Siemens | SIMATIC HMI Comfort Panels (incl. SIPLUS variants) | affected All versions <= V16 |
Siemens | SIMATIC HMI Mobile Panels | affected All versions <= V16 |
Siemens | SIMATIC HMI Unified Comfort Panels | affected All versions <= V16 |
Weaknesses (CWE)
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now