Siemens SIMATIC
Plan PatchCVSS 9.6ICS-CERT ICSA-26-134-10May 12, 2026
Siemens
Attack path
Attack VectorNetwork
Auth RequiredNone
ComplexityLow
User InteractionRequired
Summary
SIMATIC CN 4100 contains multiple vulnerabilities including null pointer dereferences, buffer overflows, integer overflows, insufficient input validation, and improper error handling that could allow an attacker with network access to execute arbitrary code, modify system data, or cause denial of service. The device runs industrial control logic and may support process automation, alarming, data logging, and integration with field devices.
What this means
What could happen
An attacker with network access to a SIMATIC CN 4100 could execute code, modify system settings, or disrupt operations on critical industrial processes controlled by the device.
Who's at risk
Operators of Siemens SIMATIC CN 4100 industrial PCs and controllers used in automation, process control, and manufacturing environments should apply this update. This device is commonly used as a gateway, edge controller, or operator workstation in water treatment, power distribution, and discrete manufacturing facilities.
How it could be exploited
An attacker with network reachability to the SIMATIC CN 4100 device could send malformed input or exploit one of multiple memory safety or validation flaws (null pointer dereference, buffer overflow, integer overflow, or insufficient input validation) to execute arbitrary code or cause a denial of service.
Prerequisites
- Network access to the SIMATIC CN 4100 device
- User interaction may be required to trigger some exploits (e.g., visiting a malicious link or opening a crafted file)
Remotely exploitableNo authentication requiredLow complexityMultiple memory safety and validation flawsCritical severity
Exploitability
Some exploitation risk — EPSS score 2.1%
Affected products (1)
ProductAffected VersionsFix Status
Remediation & Mitigation
0/1
Schedule — requires maintenance window
0/1Patching may require device reboot — plan for process interruption
HOTFIXUpdate SIMATIC CN 4100 to firmware version 5.0 or later
CVEs (171)
CVE-2024-47704CVE-2024-57924CVE-2024-58240CVE-2025-6021CVE-2025-6052CVE-2025-7425CVE-2025-8916CVE-2025-9230CVE-2025-9231CVE-2025-9232CVE-2025-9820CVE-2025-14831CVE-2025-23143CVE-2025-23160CVE-2025-31257CVE-2025-37931CVE-2025-37968CVE-2025-38322CVE-2025-38347CVE-2025-38491CVE-2025-38502CVE-2025-38552CVE-2025-38614CVE-2025-38670CVE-2025-38676CVE-2025-38677CVE-2025-38679CVE-2025-38680CVE-2025-38681CVE-2025-38683CVE-2025-38684CVE-2025-38685CVE-2025-38687CVE-2025-38691CVE-2025-38693CVE-2025-38694CVE-2025-38695CVE-2025-38696CVE-2025-38697CVE-2025-38698CVE-2025-38699CVE-2025-38700CVE-2025-38701CVE-2025-38702CVE-2025-38706CVE-2025-38707CVE-2025-38708CVE-2025-38711CVE-2025-38712CVE-2025-38713CVE-2025-38714CVE-2025-38715CVE-2025-38721CVE-2025-38723CVE-2025-38724CVE-2025-38725CVE-2025-38727CVE-2025-38728CVE-2025-38729CVE-2025-38732CVE-2025-38735CVE-2025-38736CVE-2025-39673CVE-2025-39675CVE-2025-39676CVE-2025-39681CVE-2025-39682CVE-2025-39683CVE-2025-39684CVE-2025-39685CVE-2025-39686CVE-2025-39687CVE-2025-39689CVE-2025-39691CVE-2025-39692CVE-2025-39693CVE-2025-39694CVE-2025-39697CVE-2025-39701CVE-2025-39702CVE-2025-39703CVE-2025-39706CVE-2025-39709CVE-2025-39710CVE-2025-39713CVE-2025-39714CVE-2025-39715CVE-2025-39716CVE-2025-39718CVE-2025-39719CVE-2025-39724CVE-2025-39736CVE-2025-39737CVE-2025-39738CVE-2025-39742CVE-2025-39743CVE-2025-39749CVE-2025-39752CVE-2025-39756CVE-2025-39757CVE-2025-39759CVE-2025-39760CVE-2025-39766CVE-2025-39770CVE-2025-39772CVE-2025-39773CVE-2025-39776CVE-2025-39782CVE-2025-39783CVE-2025-39787CVE-2025-39788CVE-2025-39790CVE-2025-39794CVE-2025-39795CVE-2025-39798CVE-2025-39800CVE-2025-39801CVE-2025-39806CVE-2025-39808CVE-2025-39812CVE-2025-39813CVE-2025-39817CVE-2025-39819CVE-2025-39823CVE-2025-39824CVE-2025-39825CVE-2025-39826CVE-2025-39827CVE-2025-39828CVE-2025-39835CVE-2025-39838CVE-2025-39839CVE-2025-39841CVE-2025-39842CVE-2025-39843CVE-2025-39844CVE-2025-39845CVE-2025-39846CVE-2025-39847CVE-2025-39848CVE-2025-39849CVE-2025-39853CVE-2025-39857CVE-2025-39860CVE-2025-39864CVE-2025-39865CVE-2025-39866CVE-2025-40300CVE-2025-43368CVE-2025-47219CVE-2025-48989CVE-2025-53057CVE-2025-53066CVE-2025-55752CVE-2025-55754CVE-2025-61748CVE-2025-61795CVE-2026-2673CVE-2026-21925CVE-2026-21932CVE-2026-21933CVE-2026-21945CVE-2026-21947CVE-2026-22924CVE-2026-22925CVE-2026-28387CVE-2026-28388CVE-2026-28389CVE-2026-28390CVE-2026-31789CVE-2026-31790
↑↓ Navigate · Esc Close
API:
/api/v1/advisories/c621decf-e1b1-4dfe-af57-1ede19568a6bGet OT security insights every Tuesday
Advisory breakdowns, a weekly summary, and incident analyses for the people actually defending OT environments. Free, no account required.