Описание
Yokogawa STARDOM FCN/FCJ controller R1.01 through R4.01 does not require authentication for Logic Designer connections, which allows remote attackers to reconfigure the device or cause a denial of service via a (1) stop application program, (2) change value, or (3) modify application command.
Ссылки
- Third Party AdvisoryUS Government Resource
- Vendor Advisory
- Third Party AdvisoryUS Government Resource
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:yokogawa:stardom_fcn\/fcj:r1.01:*:*:*:*:*:*:*
cpe:2.3:a:yokogawa:stardom_fcn\/fcj:r2.01:*:*:*:*:*:*:*
cpe:2.3:a:yokogawa:stardom_fcn\/fcj:r3.01:*:*:*:*:*:*:*
cpe:2.3:a:yokogawa:stardom_fcn\/fcj:r4.01:*:*:*:*:*:*:*
EPSS
Процентиль: 76%
0.00923
Низкий
7.3 High
CVSS3
7.5 High
CVSS2
Дефекты
CWE-287
Связанные уязвимости
CVSS3: 7.3
github
больше 3 лет назад
Yokogawa STARDOM FCN/FCJ controller R1.01 through R4.01 does not require authentication for Logic Designer connections, which allows remote attackers to reconfigure the device or cause a denial of service via a (1) stop application program, (2) change value, or (3) modify application command.
EPSS
Процентиль: 76%
0.00923
Низкий
7.3 High
CVSS3
7.5 High
CVSS2
Дефекты
CWE-287