CVE-2022-32284

Опубликовано: 04 июл. 2022

Источник: nvd

CVSS3: 7.5

CVSS2: 7.8

EPSS Низкий

Описание

Use of insufficiently random values vulnerability exists in Vnet/IP communication module VI461 of YOKOGAWA Wide Area Communication Router (WAC Router) AW810D, which may allow a remote attacker to cause denial-of-service (DoS) condition by sending a specially crafted packet.

Ссылки

https://jvn.jp/vu/JVNVU95343906/index.html
Third Party Advisory
VDB Entry
https://web-material3.yokogawa.com/1/32825/files/YSAR-22-0005-E.pdf
Vendor Advisory
https://web-material3.yokogawa.com/19/32825/files/YSAR-22-0005-J.pdf
Vendor Advisory
https://www.cisa.gov/uscert/ics/advisories/icsa-22-181-02
Third Party Advisory
US Government Resource
https://jvn.jp/vu/JVNVU95343906/index.html
Third Party Advisory
VDB Entry
https://web-material3.yokogawa.com/1/32825/files/YSAR-22-0005-E.pdf
Vendor Advisory
https://web-material3.yokogawa.com/19/32825/files/YSAR-22-0005-J.pdf
Vendor Advisory
https://www.cisa.gov/uscert/ics/advisories/icsa-22-181-02
Third Party Advisory
US Government Resource

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:yokogawa:aw810d_firmware:*:*:*:*:*:*:*:*

Версия до r12 (включая)

cpe:2.3:h:yokogawa:aw810d:-:*:*:*:*:*:*:*

EPSS

Процентиль: 68%

0.0057

Низкий

7.5 High

CVSS3

7.8 High

CVSS2

Дефекты

CWE-330

Связанные уязвимости

GHSA-q6jr-mp8x-xvmq

CVSS3: 7.5

github

больше 3 лет назад

BDU:2022-05427

CVSS3: 5.9

fstec