A vulnerability has been identified in SIMATIC CN 4100 (All versions < V3.0). The affected device contains an unrestricted USB port. An attacker with local access to the device could potentially misuse the port for booting another operating system and gain complete read/write access to the filesystem.
CVSS Vector
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:HSiemens Simatic Cn 4100
HWSiemenswszystkie wersjeSiemens Simatic Cn 4100 Firmware
OSSiemens< 3.0
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
Related vulnerabilities
CVE-2025-40938CRITICAL9.2PL ✓ten sam produkt
Siemens SIMATIC CN 4100 — zakodowane dane uwierzytelniające w firmware
CVE-2024-32741CRITICAL10.0PL ✓ten sam produkt
Zakodowane na stałe hasło root w Siemens SIMATIC CN 4100
CVE-2024-32740CRITICAL9.8PL ✓ten sam produkt
Ukryte dane uwierzytelniające w Siemens SIMATIC CN 4100 (hardcoded credentials)
CVE-2023-49621CRITICAL9.8PL ✓ten sam produkt
Siemens SIMATIC CN 4100 – domyślne dane uwierzytelniające z uprawnieniami administratora
CVE-2023-29130CRITICAL9.9ten sam produkt
A vulnerability has been identified in SIMATIC CN 4100 (All versions < V2.5). Affected device consists of impr...