Siemens Simatic Cn 4100 Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Siemens Simatic Cn 4100 Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (18)
CVE-2024-32741 — CVSS 10.0 (critical): A vulnerability has been identified in SIMATIC CN 4100 (All versions < V3.0). The affected device contains hard coded password which is…
CVE-2023-29130 — CVSS 9.9 (critical): A vulnerability has been identified in SIMATIC CN 4100 (All versions < V2.5). Affected device consists of improper access controls in the…
CVE-2023-49621 — CVSS 9.8 (critical): A vulnerability has been identified in SIMATIC CN 4100 (All versions < V2.7). The "intermediate installation" system state of the affected…
CVE-2024-32740 — CVSS 9.8 (critical): A vulnerability has been identified in SIMATIC CN 4100 (All versions < V3.0). The affected device contains undocumented users and…
CVE-2026-22924 — CVSS 9.1 (critical): A vulnerability has been identified in SIMATIC CN 4100 (All versions < V5.0). The affected application does not properly restrict…
CVE-2023-49251 — CVSS 8.8 (high): A vulnerability has been identified in SIMATIC CN 4100 (All versions < V2.7). The "intermediate installation" system state of the affected…
CVE-2025-40937 — CVSS 8.3 (high): A vulnerability has been identified in SIMATIC CN 4100 (All versions < V4.0.1). The affected application do not properly validate input…
CVE-2025-40938 — CVSS 8.1 (high): A vulnerability has been identified in SIMATIC CN 4100 (All versions < V4.0.1). The affected device stores sensitive information in the…
CVE-2024-32742 — CVSS 7.6 (high): A vulnerability has been identified in SIMATIC CN 4100 (All versions < V3.0). The affected device contains an unrestricted USB port. An…
CVE-2023-49252 — CVSS 7.5 (high): A vulnerability has been identified in SIMATIC CN 4100 (All versions < V2.7). The affected application allows IP configuration change…
CVE-2026-22925 — CVSS 7.5 (high): A vulnerability has been identified in SIMATIC CN 4100 (All versions < V5.0). The affected application is susceptible to resource…
CVE-2023-29131 — CVSS 7.4 (high): A vulnerability has been identified in SIMATIC CN 4100 (All versions < V2.5). Affected device consists of an incorrect default value in the…
CVE-2025-38502 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: bpf: Fix oob access in cgroup local storage Lonial reported that an…
CVE-2026-2673 — CVSS 6.5 (medium): Issue summary: An OpenSSL TLS 1.3 server may fail to negotiate the expected preferred key exchange group when its key exchange group…
CVE-2025-40593 — CVSS 6.5 (medium): A vulnerability has been identified in SIMATIC CN 4100 (All versions < V4.0). The affected application allows to control the device by…
CVE-2025-40940 — CVSS 4.9 (medium): A vulnerability has been identified in SIMATIC CN 4100 (All versions < V4.0.1). The affected application exhibits inconsistent SNMP…
CVE-2025-40939 — CVSS 4.6 (medium): A vulnerability has been identified in SIMATIC CN 4100 (All versions < V4.0.1). The affected device contains a USB port which allows…
CVE-2025-40941 — CVSS 4.3 (medium): A vulnerability has been identified in SIMATIC CN 4100 (All versions < V4.0.1). The affected devices exposes server information in its…