cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2024-32742,https://securityvulnerability.io/vulnerability/CVE-2024-32742,USB Vulnerability Allows Attackers to Boot Another OS and Access File System,"A significant vulnerability has been found in the SIMATIC CN 4100 produced by Siemens. The device features an unrestricted USB port, which allows an attacker with local access to leverage it for booting an alternative operating system. This exploitation grants the attacker comprehensive read/write access to the device's filesystem. The potential for unauthorized modifications and data breaches calls for immediate attention to secure devices running versions prior to V3.0.",Siemens,Simatic Cn 4100,7.6,HIGH,0.0004299999854993075,false,,false,false,false,,false,false,2024-05-14T10:02:49.388Z,0
CVE-2024-32741,https://securityvulnerability.io/vulnerability/CVE-2024-32741,Hardcoded Password Vulnerability Affects SIMATIC CN 4100 Devices,"A significant vulnerability has been identified in the Siemens SIMATIC CN 4100, specifically affecting all versions prior to V3.0. This vulnerability arises from the presence of hard coded passwords that are used for the privileged system user 'root' and the boot loader 'GRUB'. If an attacker successfully cracks the password hash, they could gain unauthorized root access to the device, leading to potential manipulation of system settings and data. The default use of these credentials poses a considerable risk, emphasizing the necessity for prompt remediation and security enhancements.",Siemens,Simatic Cn 4100,10,CRITICAL,0.0004299999854993075,false,,false,false,false,,false,false,2024-05-14T10:02:48.224Z,0
CVE-2024-32740,https://securityvulnerability.io/vulnerability/CVE-2024-32740,Undocumented Users and Credentials Vulnerability Affects SIMATIC CN 4100,"A security flaw has been detected in the SIMATIC CN 4100, impacting all versions prior to V3.0. The vulnerability stems from the presence of undocumented user accounts and credentials within the system. This opens a potential attack vector, allowing malicious actors to gain unauthorized access and control over the device, either locally or remotely. Such exploitation can lead to significant security risks, including manipulation of device functionalities and exposure of sensitive information.",Siemens,Simatic Cn 4100,9.8,CRITICAL,0.0004299999854993075,false,,false,false,false,,false,false,2024-05-14T10:02:47.049Z,0
CVE-2023-49252,https://securityvulnerability.io/vulnerability/CVE-2023-49252,Unauthorized IP Configuration Changes in SIMATIC CN 4100 by Siemens,"A security weakness exists in the SIMATIC CN 4100, impacting all versions prior to V2.7. This flaw permits unauthorized modifications to IP configurations, which could lead to the disruption of service. The lack of authentication for such changes could be exploited by an attacker, potentially resulting in a denial of service. Organizations utilizing this software must ensure they are operating on supported versions to mitigate this risk.",Siemens,SIMATIC CN 4100,7.5,HIGH,0.0004299999854993075,false,,false,false,false,,false,false,2024-01-09T10:15:00.000Z,0
CVE-2023-49251,https://securityvulnerability.io/vulnerability/CVE-2023-49251,Remote Access Vulnerability in SIMATIC CN 4100 by Siemens,"A vulnerability exists in the SIMATIC CN 4100 system that can be exploited during the 'intermediate installation' state. This flaw allows unauthorized attackers to inject their own login credentials into the device. As a result, an attacker can obtain root-level access remotely, enabling them to assume complete control of the system, potentially leading to unauthorized configurations, data breaches, and compromise of operational integrity even after the system is fully set up.",Siemens,SIMATIC CN 4100,9.8,CRITICAL,0.0016400000313296914,false,,false,false,false,,false,false,2024-01-09T10:15:00.000Z,0
CVE-2023-49621,https://securityvulnerability.io/vulnerability/CVE-2023-49621,Unauthorized Access Vulnerability in SIMATIC CN 4100 by Siemens,"A vulnerability has been identified in the SIMATIC CN 4100 application, specifically affecting all versions prior to V2.7. This vulnerability arises from the 'intermediate installation' state of the system, which utilizes default credentials with admin privileges. An attacker can exploit this configuration to gain complete control over the affected device, posing serious implications for industrial control system security. It is essential for users to ensure proper credential management and upgrade to secure versions to mitigate potential risks.",Siemens,SIMATIC CN 4100,9.8,CRITICAL,0.0004299999854993075,false,,false,false,false,,false,false,2024-01-09T10:15:00.000Z,0
CVE-2023-29130,https://securityvulnerability.io/vulnerability/CVE-2023-29130,Privilege Escalation Vulnerability in SIMATIC CN 4100 by Siemens,"A privilege escalation vulnerability has been detected in the SIMATIC CN 4100, affecting all versions prior to V2.5. This vulnerability stems from improper access controls within the configuration files, allowing attackers to elevate their privileges to admin status. As a result, an unauthorized user can gain complete control over the affected device, posing significant risks to system integrity and security. It is imperative for users to assess their systems and apply necessary mitigations to prevent exploitation.",Siemens,Simatic Cn 4100,9.9,CRITICAL,0.002319999970495701,false,,false,false,false,,false,false,2023-07-11T10:15:00.000Z,0
CVE-2023-29131,https://securityvulnerability.io/vulnerability/CVE-2023-29131,SSH Configuration Flaw in SIMATIC CN 4100 Affects Siemens Devices,"A security weakness has been discovered in the SIMATIC CN 4100 which affects all versions prior to V2.5. This vulnerability arises from an incorrect default setting in the SSH configuration that could potentially enable unauthorized network access, allowing attackers to circumvent established network isolation protections. Such exploitation could lead to significant security risks for industrial control environments.",Siemens,Simatic Cn 4100,7.4,HIGH,0.003860000055283308,false,,false,false,false,,false,false,2023-07-11T10:15:00.000Z,0