PT-2025-49845 · Siemens · Simatic Cn 4100
Published
2025-12-09
·
Updated
2025-12-09
·
CVE-2025-40940
CVSS v2.0
6.8
Medium
| Vector | AV:N/AC:L/Au:S/C:C/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
SIMATIC CN 4100 versions prior to 4.0.1
Description
The application demonstrates inconsistent Simple Network Management Protocol (SNMP) behavior, including unexpected service availability and unreliable configuration handling across different protocol versions. This could allow an attacker to access sensitive data, potentially leading to a breach of confidentiality.
Recommendations
Update to version 4.0.1 or later.
Fix
Information Disclosure
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Simatic Cn 4100