CVE-2023-29130

Name of the Vulnerable Software and Affected Versions SIMATIC CN 4100 versions prior to V2.5

Description The issue is related to errors in access management, specifically improper access controls in configuration files, which can lead to privilege escalation. An attacker, acting remotely, could exploit this to gain admin access and achieve complete control over the device.

Recommendations For versions prior to V2.5, update to version V2.5 or later to resolve the issue. As a temporary workaround, consider restricting access to the configuration files to minimize the risk of exploitation.