cbcvebase.
CVE-2024-41798
published 2024-10-08

CVE-2024-41798: A vulnerability has been identified in SENTRON 7KM PAC3200 (All versions). Affected devices only provide a 4-digit PIN to protect from administrative access…

PriorityP260critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
0.53%
40.6th percentile
A vulnerability has been identified in SENTRON 7KM PAC3200 (All versions). Affected devices only provide a 4-digit PIN to protect from administrative access via Modbus TCP interface. Attackers with access to the Modbus TCP interface could easily bypass this protection by brute-force attacks or by sniffing the Modbus clear text communication.

Affected

1 ranges
VendorProductVersion rangeFixed in
siemenssentron_7km_pac3200< **

Detection & IOCsextracted from sources · hover to see the quote

  • Monitor Modbus TCP traffic for rapid sequential PIN attempts against SENTRON 7KM PAC3200 devices, which may indicate a brute-force attack against the 4-digit PIN (only 10,000 possible combinations)
  • Inspect Modbus TCP clear-text traffic for administrative PIN values being transmitted in plaintext, enabling credential sniffing detection via network monitoring/IDS on Modbus TCP port 502
  • Alert on any external/internet-routable source IP initiating Modbus TCP sessions to SENTRON 7KM PAC3200 devices, as the device provides no fix and relies solely on network segmentation
  • ·No fix is planned for any version of SENTRON 7KM PAC3200; the 4-digit PIN should not be treated as a security control against malicious access — only network-level controls are effective
  • ·The PIN protection on the Modbus TCP interface is limited to 4 digits (10,000 combinations), making it trivially brute-forceable; do not rely on it as an authentication boundary
  • ·Siemens explicitly states the PIN is intended only as protection against inadvertent operating errors, not against malicious brute-force attacks

CVSS provenance

nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv4.09.3CRITICALCVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.