CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-40938

A vulnerability has been identified in SIMATIC CN 4100 (All versions < V4.0.1). The affected device stores sensitive information in the firmware. This could allow an attacker to access and misuse this information, potentially impacting the device’s confidentiality, integrity, and availability.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 12.4%

CVSS Severity

CVSS v3 Score 8.1

References

https://cert-portal.siemens.com/productcert/html/ssa-416652.html

Products affected by CVE-2025-40938

Siemens » Simatic Cn 4100 » Version: N/A

cpe:2.3:h:siemens:simatic_cn_4100:-
Siemens » Simatic Cn 4100 Firmware » Version: Any

cpe:2.3:o:siemens:simatic_cn_4100_firmware:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-40938

Products

Pricing

Contact Us