CVE-2019-6572
Description
A vulnerability has been identified in SIMATIC HMI Comfort Panels 4" - 22" (All versions < V15.1 Update 1), SIMATIC HMI Comfort Outdoor Panels 7" & 15" (All versions < V15.1 Update 1), SIMATIC HMI KTP Mobile Panels KTP400F, KTP700, KTP700F, KTP900 und KTP900F (All versions < V15.1 Update 1), SIMATIC WinCC Runtime Advanced (All versions < V15.1 Update 1), SIMATIC WinCC Runtime Professional (All versions < V15.1 Update 1), SIMATIC WinCC (TIA Portal) (All versions < V15.1 Update 1), SIMATIC HMI Classic Devices (TP/MP/OP/MP Mobile Panel) (All versions). The affected device offered SNMP read and write capacities with a publicly know hardcoded community string. The security vulnerability could be exploited by an attacker with network access to the affected device. Successful exploitation requires no system privileges and no user interaction. An attacker could use the vulnerability to compromise confidentiality and integrity of the affected system. At the time of advisory publication no public exploitation of this security vulnerability was known.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Siemens SIMATIC HMI and WinCC (TIA Portal) devices ship with a hardcoded SNMP community string, allowing adjacent attackers to read and write device variables without authentication.
Vulnerability
A hardcoded SNMP read/write community string is present in Siemens SIMATIC HMI Comfort Panels 4"–22" (all versions prior to V15.1 Update 1), SIMATIC HMI Comfort Outdoor Panels 7" & 15" (all versions prior to V15.1 Update 1), SIMATIC HMI KTP Mobile Panels KTP400F, KTP700, KTP700F, KTP900, KTP900F (all versions prior to V15.1 Update 1), SIMATIC WinCC Runtime Advanced (all versions prior to V15.1 Update 1), SIMATIC WinCC Runtime Professional (all versions prior to V15.1 Update 1), SIMATIC WinCC (TIA Portal) (all versions prior to V15.1 Update 1), and SIMATIC HMI Classic Devices (TP/MP/OP/MP Mobile Panel) (all versions). The community string is publicly known, enabling unauthenticated SNMP operations [1].
Exploitation
An attacker with network access to the affected device can send SNMP GET and SET requests using the hardcoded community string. No system privileges, user interaction, or prior authentication are required. The vulnerability is remotely exploitable with low skill level [1].
Impact
Successful exploitation allows the attacker to read and write device variables via SNMP, compromising both confidentiality and integrity of the affected system. The CVSS v3 base score is 6.5 (AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N) [1].
Mitigation
Siemens has released V15.1 Update 1 to fix this vulnerability for the affected products (except HMI Classic Devices, which are end-of-life). Customers should update to the patched version. No workaround is available; Siemens recommends restricting network access to SNMP ports on affected devices as a general security practice [1].
AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
10- Range: < V15.1 Update 1
- Range: < V15.1 Update 1
- Range: < V15.1 Update 1
- Siemens AG/SIMATIC HMI Classic Devices (TP/MP/OP/MP Mobile Panel)v5Range: All versions
- Siemens AG/SIMATIC HMI Comfort Outdoor Panels 7" & 15"v5Range: All versions < V15.1 Update 1
- Siemens AG/SIMATIC HMI Comfort Panels 4" - 22"v5Range: All versions < V15.1 Update 1
- Siemens AG/SIMATIC HMI KTP Mobile Panels KTP400F, KTP700, KTP700F, KTP900 und KTP900Fv5Range: All versions < V15.1 Update 1
- Siemens AG/SIMATIC WinCC Runtime Advancedv5Range: All versions < V15.1 Update 1
- Siemens AG/SIMATIC WinCC Runtime Professionalv5Range: All versions < V15.1 Update 1
- Siemens AG/SIMATIC WinCC (TIA Portal)v5Range: All versions < V15.1 Update 1
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
3- www.securityfocus.com/bid/108412mitrevdb-entryx_refsource_BID
- cert-portal.siemens.com/productcert/pdf/ssa-804486.pdfmitrex_refsource_MISC
- www.us-cert.gov/ics/advisories/ICSA-19-134-09mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.