Primary

Context

Siemens SIMATIC CN 4100 Sensitive Information Storage Vulnerability Prior to V4.0.1

Vulnerability

Patched

A vulnerability exists in Siemens SIMATIC CN 4100, all versions prior to V4.0.1, where the device firmware improperly stores sensitive information. This flaw could enable an attacker to access and exploit this information, potentially compromising the device's confidentiality, integrity, and availability.

Impact

Exploitation of this vulnerability could lead to unauthorized access and misuse of sensitive information stored in the device's firmware, with potential negative effects on the device's confidentiality, integrity, and availability.

Remediation

Users are advised to update to version V4.0.1 or later. Additional information can be found on the Siemens support website.

Added: Dec 9, 2025, 8:05 PM

Updated: Dec 9, 2025, 8:05 PM

Vulnerability Rating

Custom Algorithm

spread

0.3

impact

7.5

exploitability

7.0

remediation

7.7

relevance

1.3

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.3

impact

7.5

exploitability

7.0

remediation

7.7

relevance

1.3

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Siemens SIMATIC CN 4100 Sensitive Information Storage Vulnerability Prior to V4.0.1

Vulnerability

Impact

Remediation

Affected Products

Siemens SIMATIC CN 4100

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating