CVE-2020-15786

A vulnerability has been identified in SIMATIC HMI Basic Panels 2nd Generation (incl. SIPLUS variants) (All versions < V16), SIMATIC HMI Comfort Panels (incl. SIPLUS variants) (All versions <= V16), SIMATIC HMI Mobile Panels (All versions <= V16), SIMATIC HMI Unified Comfort Panels (All versions <= V16). Affected devices insufficiently block excessive authentication attempts. This could allow a remote attacker to discover user passwords and obtain access to the Sm@rt Server via a brute-force attack.
References
Configurations

Configuration 1


Information

Published : 2020-09-09 07:15

Updated : 2021-06-08 08:15


NVD link : CVE-2020-15786

Mitre link : CVE-2020-15786

CWE
CWE-307

Improper Restriction of Excessive Authentication Attempts