CVE 9.1 CRITICAL

CVE-2026-22924_CVE-2026-22924

May 12, 2026 invoker category_cve

9.1 / 10

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

Description

A vulnerability has been identified in SIMATIC CN 4100 (All versions < V5.0). The affected application does not properly restrict unauthenticated connections and is susceptible to resource exhaustion conditions.
This could allow an attacker to disrupt normal operations or perform unauthorized actions, potentially impacting system availability and integrity.

AI Analysis

Vulnerability in SIMATIC CN 4100 allowing unauthenticated connections and resource exhaustion conditions, potentially disrupting system availability and integrity.

Basic Information

ID CVE-2026-22924

Source siemens

Published May 12, 2026 at 08:20

Affected Product

Vendor Siemens

Product SIMATIC CN 4100

Affected Versions Siemens SIMATIC CN 4100 0

CWE Classification

CWE-306

AI Assessment

AI Score 9.1 / 10

AI Severity Critical

Vendor Siemens

Product SIMATIC CN 4100

Version All versions < V5.0

References

cert-portal.siemens.com /productcert/html/ssa-032379.html

{
    "lastseen": "",
    "description": "A vulnerability has been identified in SIMATIC CN 4100 (All versions < V5.0). The affected application does not properly restrict unauthenticated connections and is susceptible to resource exhaustion conditions.\r\nThis could allow an attacker to disrupt normal operations or perform unauthorized actions, potentially impacting system availability and integrity.",
    "published": "2026-05-12T08:20:55.135Z",
    "modified": "2026-05-12T08:20:55.135Z",
    "type": "cve",
    "title": "CVE-2026-22924",
    "source": "siemens",
    "references": "https://cert-portal.siemens.com/productcert/html/ssa-032379.html",
    "id": "CVE-2026-22924",
    "bulletinFamily": "",
    "cwe": [
        "CWE-306"
    ],
    "cvelist": null,
    "sourceData": "Siemens SIMATIC CN 4100 0",
    "sourceHref": "",
    "cvss": {
        "score": 9.1,
        "severity": "CRITICAL",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "SIMATIC CN 4100",
    "version": "0",
    "vendor": "Siemens",
    "ai_description": "Vulnerability in SIMATIC CN 4100 allowing unauthenticated connections and resource exhaustion conditions, potentially disrupting system availability and integrity.",
    "ai_severity": "Critical",
    "ai_vendor": "Siemens",
    "ai_product": "SIMATIC CN 4100",
    "ai_version": "All versions < V5.0",
    "ai_score": 9.1
}

💭 Join the Security Discussion ❌ Cancel Reply