CVE-2020-7592

CWE-319Cleartext Transmission3 documents3 sources
Severity
6.5MEDIUM
EPSS
0.0%
top 90.52%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
6
Siemens AG Simatic HMI Basic Panels 1ST Generation (incl. Siplus Variants)Siemens AG Simatic HMI Basic Panels 2ND Generation (incl. Siplus Variants)Siemens AG Simatic HMI Comfort Panels (incl. Siplus Variants)+3 more
Timeline
PublishedJul 14
Latest updateMay 24

Description

A vulnerability has been identified in SIMATIC HMI Basic Panels 1st Generation (incl. SIPLUS variants) (All versions), SIMATIC HMI Basic Panels 2nd Generation (incl. SIPLUS variants) (All versions), SIMATIC HMI Comfort Panels (incl. SIPLUS variants) (All versions), SIMATIC HMI KTP700F Mobile Arctic (All versions), SIMATIC HMI Mobile Panels 2nd Generation (All versions), SIMATIC WinCC Runtime Advanced (All versions). Unencrypted communication between the configuration software and the respective

CVSS vector

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 2.8 | Impact: 3.6

Affected Packages6 packages

🔴Vulnerability Details

2
GHSA
GHSA-mhgv-m547-f82g: A vulnerability has been identified in SIMATIC HMI Basic Panels 1st Generation (incl2022-05-24
CVEList
CVE-2020-7592: A vulnerability has been identified in SIMATIC HMI Basic Panels 1st Generation (incl2020-07-14
CVE-2020-7592 (MEDIUM CVSS 6.5) | A vulnerability has been identified | cvebase.io