Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Simatic_hmi_comfort_panels_firmware
(Siemens)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 12 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2020-07-14 | CVE-2020-7592 | A vulnerability has been identified in SIMATIC HMI Basic Panels 1st Generation (incl. SIPLUS variants) (All versions), SIMATIC HMI Basic Panels 2nd Generation (incl. SIPLUS variants) (All versions), SIMATIC HMI Comfort Panels (incl. SIPLUS variants) (All versions), SIMATIC HMI KTP700F Mobile Arctic (All versions), SIMATIC HMI Mobile Panels 2nd Generation (All versions), SIMATIC WinCC Runtime Advanced (All versions). Unencrypted communication between the configuration software and the... | Simatic_hmi_basic_panels_1st_generation, Simatic_hmi_basic_panels_2nd_generation, Simatic_hmi_comfort_panels_firmware, Simatic_hmi_ktp700f_mobile_arctic_firmware, Simatic_hmi_mobile_panels_2nd_generation_firmware, Simatic_wincc_runtime_advanced | 6.5 | ||
| 2020-09-09 | CVE-2020-15786 | A vulnerability has been identified in SIMATIC HMI Basic Panels 2nd Generation (incl. SIPLUS variants) (All versions < V16), SIMATIC HMI Comfort Panels (incl. SIPLUS variants) (All versions <= V16), SIMATIC HMI Mobile Panels (All versions <= V16), SIMATIC HMI Unified Comfort Panels (All versions <= V16). Affected devices insufficiently block excessive authentication attempts. This could allow a remote attacker to discover user passwords and obtain access to the Sm@rt Server via a brute-force attack. | Simatic_hmi_basic_panels_2nd_generation_firmware, Simatic_hmi_comfort_panels_firmware, Simatic_hmi_mobile_panels_firmware, Simatic_hmi_united_comfort_panels_firmware | 9.8 |