Siemens

Simatic Cn 4100

11 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.3

CVE-2025-40941

  • EPSS 0.04%
  • Veröffentlicht 09.12.2025 10:44:40
  • Zuletzt bearbeitet 10.12.2025 21:32:01

A vulnerability has been identified in SIMATIC CN 4100 (All versions < V4.0.1). The affected devices exposes server information in its responses. This could allow an attacker with network access to gain useful information, increasing the likelihood ...

4.9

CVE-2025-40940

  • EPSS 0.04%
  • Veröffentlicht 09.12.2025 10:44:39
  • Zuletzt bearbeitet 10.12.2025 21:34:59

A vulnerability has been identified in SIMATIC CN 4100 (All versions < V4.0.1). The affected application exhibits inconsistent SNMP behavior, such as unexpected service availability and unreliable configuration handling across protocol versions. This...

4.6

CVE-2025-40939

  • EPSS 0.03%
  • Veröffentlicht 09.12.2025 10:44:37
  • Zuletzt bearbeitet 16.12.2025 17:30:28

A vulnerability has been identified in SIMATIC CN 4100 (All versions < V4.0.1). The affected device contains a USB port which allows unauthenticated connections. This could allow an attacker with physical access to the device to trigger reboot that c...

9.8

CVE-2025-40938

  • EPSS 0.06%
  • Veröffentlicht 09.12.2025 10:44:36
  • Zuletzt bearbeitet 10.12.2025 21:36:44

A vulnerability has been identified in SIMATIC CN 4100 (All versions < V4.0.1). The affected device stores sensitive information in the firmware. This could allow an attacker to access and misuse this information, potentially impacting the device’s c...

8.8

CVE-2025-40937

  • EPSS 0.1%
  • Veröffentlicht 09.12.2025 10:44:35
  • Zuletzt bearbeitet 10.12.2025 21:37:50

A vulnerability has been identified in SIMATIC CN 4100 (All versions < V4.0.1). The affected application do not properly validate input parameters in its REST API, resulting in improper handling of unexpected arguments. This could allow an authentic...

7.1

CVE-2025-40593

  • EPSS 0.13%
  • Veröffentlicht 08.07.2025 10:34:51
  • Zuletzt bearbeitet 16.12.2025 19:33:11

A vulnerability has been identified in SIMATIC CN 4100 (All versions < V4.0). The affected application allows to control the device by storing arbitrary files in the SFTP folder of the device. This could allow an attacker to cause a denial of service...

7.6

CVE-2024-32742

  • EPSS 0.14%
  • Veröffentlicht 14.05.2024 16:17:12
  • Zuletzt bearbeitet 20.08.2025 18:05:14

A vulnerability has been identified in SIMATIC CN 4100 (All versions < V3.0). The affected device contains an unrestricted USB port. An attacker with local access to the device could potentially misuse the port for booting another operating system an...

9.8

CVE-2024-32740

  • EPSS 0.86%
  • Veröffentlicht 14.05.2024 16:17:11
  • Zuletzt bearbeitet 20.08.2025 18:09:35

A vulnerability has been identified in SIMATIC CN 4100 (All versions < V3.0). The affected device contains undocumented users and credentials. An attacker could misuse the credentials to compromise the device locally or over the network.

10

CVE-2024-32741

  • EPSS 0.74%
  • Veröffentlicht 14.05.2024 16:17:11
  • Zuletzt bearbeitet 26.08.2025 20:16:23

A vulnerability has been identified in SIMATIC CN 4100 (All versions < V3.0). The affected device contains hard coded password which is used for the privileged system user `root` and for the boot loader `GRUB` by default . An attacker who manages to ...

10

CVE-2023-29130

  • EPSS 0.2%
  • Veröffentlicht 11.07.2023 10:15:10
  • Zuletzt bearbeitet 21.11.2024 07:56:35

A vulnerability has been identified in SIMATIC CN 4100 (All versions < V2.5). Affected device consists of improper access controls in the configuration files that leads to privilege escalation. An attacker could gain admin access with this vulnerabil...