Vulnerability Details CVE-2026-22925
A vulnerability has been identified in SIMATIC CN 4100 (All versions < V5.0). The affected application is susceptible to resource exhaustion when subjected to high volume of TCP SYN packets
This could allow an attacker to render the service unavailable and cause denial-of-service conditions by overwhelming system resources.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 24.3%
CVSS Severity
CVSS v3 Score 7.5
Products affected by CVE-2026-22925
-
cpe:2.3:h:siemens:simatic_cn_4100:-
-
cpe:2.3:o:siemens:simatic_cn_4100_firmware:-
-
cpe:2.3:o:siemens:simatic_cn_4100_firmware:2.5
-
cpe:2.3:o:siemens:simatic_cn_4100_firmware:2.7
-
cpe:2.3:o:siemens:simatic_cn_4100_firmware:4.0