A vulnerability has been identified in SIMATIC CN 4100 (All versions < V2.5). Affected device consists of an incorrect default value in the SSH configuration. This could allow an attacker to bypass network isolation.
https://cert-portal.siemens.com/productcert/pdf/ssa-313488.pdf