CVE-2023-49621
CVSS 3.1 Score 9.8 of 10 (high)
Details
Summary
CVE-2023-49621 is a newly discovered vulnerability affecting Siemens SIMATIC CN 4100 systems (all versions prior to V2.7). This issue arises due to the use of default admin credentials during the intermediate installation state. An attacker can exploit this vulnerability by gaining unauthorized access to the affected device, ultimately obtaining complete control. This puts industrial networks at risk of potential data theft, manipulation, or even sabotage. System administrators are advised to update their devices to the latest version or implement strong, unique passwords to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Affected Vendors
- Siemens AG