Siemens Simatic Cn 4100
By the Year
In 2024 there have been 3 vulnerabilities in Siemens Simatic Cn 4100 with an average score of 9.0 out of ten. Last year Simatic Cn 4100 had 2 security vulnerabilities published. That is, 1 more vulnerability have already been reported in 2024 as compared to last year. Last year, the average CVE base score was greater by 0.97
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2024 | 3 | 9.03 |
| 2023 | 2 | 10.00 |
| 2022 | 0 | 0.00 |
| 2021 | 0 | 0.00 |
| 2020 | 0 | 0.00 |
| 2019 | 0 | 0.00 |
| 2018 | 0 | 0.00 |
It may take a day or so for new Simatic Cn 4100 vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Siemens Simatic Cn 4100 Security Vulnerabilities
A vulnerability has been identified in SIMATIC CN 4100 (All versions < V2.7)
CVE-2023-49621
9.8 - Critical
- January 09, 2024
A vulnerability has been identified in SIMATIC CN 4100 (All versions < V2.7). The "intermediate installation" system state of the affected application uses default credential with admin privileges. An attacker could use the credentials to gain complete control of the affected device.
1392
A vulnerability has been identified in SIMATIC CN 4100 (All versions < V2.7)
CVE-2023-49252
7.5 - High
- January 09, 2024
A vulnerability has been identified in SIMATIC CN 4100 (All versions < V2.7). The affected application allows IP configuration change without authentication to the device. This could allow an attacker to cause denial of service condition.
A vulnerability has been identified in SIMATIC CN 4100 (All versions < V2.7)
CVE-2023-49251
9.8 - Critical
- January 09, 2024
A vulnerability has been identified in SIMATIC CN 4100 (All versions < V2.7). The "intermediate installation" system state of the affected application allows an attacker to add their own login credentials to the device. This allows an attacker to remotely login as root and take control of the device even after the affected device is fully set up.
Insecure Direct Object Reference / IDOR
A vulnerability has been identified in SIMATIC CN 4100 (All versions < V2.5)
CVE-2023-29130
10 - Critical
- July 11, 2023
A vulnerability has been identified in SIMATIC CN 4100 (All versions < V2.5). Affected device consists of improper access controls in the configuration files that leads to privilege escalation. An attacker could gain admin access with this vulnerability leading to complete device control.
A vulnerability has been identified in SIMATIC CN 4100 (All versions < V2.5)
CVE-2023-29131
10 - Critical
- July 11, 2023
A vulnerability has been identified in SIMATIC CN 4100 (All versions < V2.5). Affected device consists of an incorrect default value in the SSH configuration. This could allow an attacker to bypass network isolation.
Incorrect Default Permissions
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Siemens Simatic Cn 4100 or by Siemens? Click the Watch button to subscribe.
