CVE-2023-29130

CVSS 3.1 Score 10.0 of 10 (high)

Details

Published Jul 11, 2023

Updated: Jul 18, 2023

CWE ID 284

Summary

CVE-2023-29130 is a newly identified vulnerability affecting Siemens SIMATIC CN 4100 devices, versions prior to V2.5. This issue stems from flawed access controls in the configuration files, allowing an attacker to escalate privileges. Successful exploitation grants the attacker administrative access, providing full control over the affected device. This vulnerability poses a significant risk to industrial control systems, requiring immediate attention and patching to mitigate potential threats.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/r9AYzK
https://www.cve.org/CVERecord?id=CVE-2023-29130
https://nvd.nist.gov/vuln/detail/CVE-2023-29130

Back to Vulnerability Database

CVE-2023-29130

CVSS 3.1 Score 10.0 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations