Primary

Context

Siemens SIMATIC CN 4100 Server Information Exposure Vulnerability

Vulnerability

Patched

A vulnerability exists in Siemens SIMATIC CN 4100, all versions prior to 4.0.1, where the application unintentionally reveals server information in its responses. This flaw could enable an attacker with network access to gather valuable information, thereby increasing the chances of targeted attacks.

Impact

Exploitation of this vulnerability could lead to unauthorized information disclosure, allowing attackers to gather intelligence that could be used in subsequent attacks.

Remediation

Users are advised to update to version 4.0.1 or later. Additional guidance can be found on the Siemens support website.

Added: Dec 9, 2025, 8:04 PM

Updated: Dec 9, 2025, 8:04 PM

Vulnerability Rating

Custom Algorithm

spread

0.3

impact

2.5

exploitability

7.0

remediation

7.9

relevance

1.4

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.3

impact

2.5

exploitability

7.0

remediation

7.9

relevance

1.4

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Siemens SIMATIC CN 4100 Server Information Exposure Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Siemens SIMATIC CN 4100

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating