CVE-2024-41798

Name of the Vulnerable Software and Affected Versions Siemens SENTRON 7KM PAC3200 (All versions)

Description A vulnerability has been identified in the Modbus TCP interface of the Siemens SENTRON 7KM PAC3200, where affected devices only provide a 4-digit PIN to protect from administrative access. This insufficient protection allows attackers with access to the Modbus TCP interface to bypass it by brute-force attacks or by sniffing the Modbus clear text communication. The issue is related to improper authentication, specifically the use of a weak 4-digit PIN and the lack of encryption in the Modbus protocol.

Recommendations As a temporary workaround, consider disabling access to the Modbus TCP interface until a patch is available. Restrict access to the administrative functions to minimize the risk of exploitation. Avoid using the 4-digit PIN for protection until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.