Denial of Service Vulnerability in SIMATIC CN 4100 before V4.0
Monitor6.5SSA-626991Jul 8, 2025
Attack VectorNetwork
Auth RequiredLow
ComplexityLow
User InteractionNone needed
Summary
A vulnerability in SIMATIC CN 4100 allows an attacker to cause a denial of service condition. The SIMATIC CN 4100 is a communication gateway used in Siemens industrial automation systems. An attacker with network access and valid user credentials can trigger the vulnerability to disrupt device operation.
What this means
What could happen
An attacker could crash or freeze the CN 4100 communication gateway, disrupting data flow between control systems and field devices. This could interrupt monitoring and control of industrial processes until the device is manually restarted.
Who's at risk
SIMATIC CN 4100 operators, particularly in manufacturing, utility automation, and critical infrastructure sectors. This device is used as a communication gateway in Siemens TIA Portal environments to bridge networks and control systems. Any facility relying on this gateway for real-time process monitoring and control should assess their exposure.
How it could be exploited
An attacker with network access and valid user credentials sends a specially crafted request to the CN 4100 device. The device fails to validate the input properly, causing it to become unresponsive and require manual restart.
Prerequisites
- Network access to the SIMATIC CN 4100 (typically port 102 for S7 communication or HTTP/HTTPS ports)
- Valid user credentials or authentication to the device
- Knowledge of the device's communication protocol or web interface
remotely exploitablelow complexityrequires valid credentialsaffects communications infrastructure
Exploitability
Low exploit probability (EPSS 0.1%)
Affected products (1)
ProductAffected VersionsFix Status
SIMATIC CN 4100< V4.04.0
Remediation & Mitigation
0/1
Schedule — requires maintenance window
0/1Patching may require device reboot — plan for process interruption
HOTFIXUpdate SIMATIC CN 4100 firmware to version 4.0 or later
CVEs (1)
↑↓ Navigate · Esc Close
API:
/api/v1/advisories/2a196a75-ea84-4002-9f7d-065ec04eca59