virus logo Intrusion Prevention

Siemens.SIMATIC.HMI.Default.Password.Security.Issue

description-logoDescription

Siemens SIMATIC HMI provides an interface for managing complex processes of machines and systems. It uses open and standardized interfaces in hardware and software for efficient integration into automation systems.
The default credentials for SIMATIC HMI are username = "administrator" and password = "100" . The user name and password for the administration panel of Siemens SIMATIC HMI are set to the manufacturer's default values. If an unauthorized user succeed in guessing the username and password by simply trying the default values, it allows unauthorized users to change the configuration of the wireless access point.

affected-products-logoAffected Products

Siemens SIMATIC HMI

Impact logoImpact

This vulnerability would potentially allow remote attackers to gain complete access to control SIMATIC HMI.

recomended-action-logoRecommended Actions

The vendor recommends users to change the user name and password to more difficult one which are hard for malicious users to guess.

Coverage

IPS (Regular DB)
IPS (Extended DB)
ID 31052
Created Feb 08, 2012
Updated Feb 08, 2012
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon
Default Action Unavailable
Active
Profile Type N/A