PT-2025-49844 · Siemens · Simatic Cn 4100
Published
2025-12-09
·
Updated
2025-12-09
·
CVE-2025-40939
CVSS v2.0
4.9
Medium
| Vector | AV:L/AC:L/Au:N/C:N/I:N/A:C |
Name of the Vulnerable Software and Affected Versions
SIMATIC CN 4100 versions prior to 4.0.1
Description
The SIMATIC CN 4100 device contains a USB port that allows unauthenticated connections. An attacker with physical access can exploit this to trigger a reboot, potentially causing a denial of service condition.
Recommendations
Update to version 4.0.1 or later.
Fix
Improper Access Control
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Simatic Cn 4100