CVE-2024-32740

Name of the Vulnerable Software and Affected Versions SIMATIC CN 4100 versions prior to V3.0

Description A vulnerability has been identified in the SIMATIC CN 4100 device, which contains undocumented users and credentials. This issue is related to the use of pre-installed credentials. An attacker could misuse these credentials to compromise the device locally or over the network, potentially allowing a remote attacker to gain full access to the device.

Recommendations For versions prior to V3.0, update to version V3.0 or later to resolve the issue. As a temporary workaround, consider restricting network access to the device and changing any default or pre-installed credentials to minimize the risk of exploitation.