Multiple Vulnerabilities in SIMATIC CN 4100 Before V4.0.1

Plan Patch8.3SSA-416652Dec 9, 2025

Attack VectorNetwork

Auth RequiredLow

ComplexityLow

User InteractionNone needed

Summary

SIMATIC CN 4100 contains multiple vulnerabilities (CWE-77 command injection, CWE-798 hard-coded credentials, CWE-284 improper access control, CWE-200 information exposure) that could compromise availability, integrity, and confidentiality of the device and systems it controls.

What this means

What could happen

An authenticated attacker could inject commands, abuse hard-coded credentials, or bypass access controls to gain unauthorized control of the CN 4100 industrial panel computer, potentially disrupting production monitoring, data integrity, or causing loss of operational visibility.

Who's at risk

This affects organizations running SIMATIC CN 4100 industrial panel computers, which are commonly used in manufacturing, water treatment, electric utilities, and other process industries for local HMI, data logging, and process monitoring. Any facility where the CN 4100 is used for operational visibility or control should prioritize this update.

How it could be exploited

An attacker with valid credentials (or exploiting hard-coded accounts) on the network could send crafted input containing shell commands to the CN 4100, which would be executed with the panel's privileges. This could allow the attacker to modify system configuration, access sensitive process data, or disrupt the device's ability to monitor and control industrial processes.

Prerequisites

Network access to the SIMATIC CN 4100
Valid user credentials or knowledge of hard-coded default accounts

Remotely exploitableRequires valid credentials (reduces but does not eliminate risk)Affects industrial panel computers used in critical operationsMultiple vulnerability types including command injection and hard-coded credentials

Exploitability

Low exploit probability (EPSS 0.1%)

Affected products (1)

ProductAffected VersionsFix Status

SIMATIC CN 4100< 4.0.14.0.1

Remediation & Mitigation

0/1

Schedule — requires maintenance window

0/1

Patching may require device reboot — plan for process interruption

HOTFIXUpdate SIMATIC CN 4100 to firmware version 4.0.1 or later

CVEs (5)

CVE-2025-40937 CVE-2025-40938 CVE-2025-40939 CVE-2025-40940 CVE-2025-40941

View full Siemens ProductCERT advisory

↑↓ Navigate · Esc Close

API: /api/v1/advisories/9d7d8ec6-be5d-4619-b529-948ba59ce89c