CVE-2024-32742
- EPSS 0.39%
- Veröffentlicht 14.05.2024 16:17:12
- Zuletzt bearbeitet 20.08.2025 18:05:14
A vulnerability has been identified in SIMATIC CN 4100 (All versions < V3.0). The affected device contains an unrestricted USB port. An attacker with local access to the device could potentially misuse the port for booting another operating system an...
- EPSS 0.63%
- Veröffentlicht 14.05.2024 16:17:11
- Zuletzt bearbeitet 26.08.2025 20:16:23
A vulnerability has been identified in SIMATIC CN 4100 (All versions < V3.0). The affected device contains hard coded password which is used for the privileged system user `root` and for the boot loader `GRUB` by default . An attacker who manages to ...
CVE-2024-32740
- EPSS 0.7%
- Veröffentlicht 14.05.2024 16:17:11
- Zuletzt bearbeitet 20.08.2025 18:09:35
A vulnerability has been identified in SIMATIC CN 4100 (All versions < V3.0). The affected device contains undocumented users and credentials. An attacker could misuse the credentials to compromise the device locally or over the network.
CVE-2023-49621
- EPSS 0.6%
- Veröffentlicht 09.01.2024 10:15:20
- Zuletzt bearbeitet 16.12.2025 19:32:22
A vulnerability has been identified in SIMATIC CN 4100 (All versions < V2.7). The "intermediate installation" system state of the affected application uses default credential with admin privileges. An attacker could use the credentials to gain comple...
CVE-2023-49252
- EPSS 0.57%
- Veröffentlicht 09.01.2024 10:15:20
- Zuletzt bearbeitet 16.12.2025 19:31:53
A vulnerability has been identified in SIMATIC CN 4100 (All versions < V2.7). The affected application allows IP configuration change without authentication to the device. This could allow an attacker to cause denial of service condition.
CVE-2023-49251
- EPSS 0.53%
- Veröffentlicht 09.01.2024 10:15:19
- Zuletzt bearbeitet 16.12.2025 19:32:51
A vulnerability has been identified in SIMATIC CN 4100 (All versions < V2.7). The "intermediate installation" system state of the affected application allows an attacker to add their own login credentials to the device. This allows an attacker to rem...
- EPSS 0.47%
- Veröffentlicht 11.07.2023 10:15:10
- Zuletzt bearbeitet 18.02.2026 18:23:36
A vulnerability has been identified in SIMATIC CN 4100 (All versions < V2.5). Affected device consists of improper access controls in the configuration files that leads to privilege escalation. An attacker could gain admin access with this vulnerabil...
- EPSS 0.36%
- Veröffentlicht 11.07.2023 10:15:10
- Zuletzt bearbeitet 18.02.2026 18:23:36
A vulnerability has been identified in SIMATIC CN 4100 (All versions < V2.5). Affected device consists of an incorrect default value in the SSH configuration. This could allow an attacker to bypass network isolation.