CVE-2022-23401

🗓️ 11 Mar 2022 09:10:51Reported by jpcertType

Yokogawa Electric products vulnerable to insecure DLL loading

Reporter	Title	Published	Views	Family All 11
ATTACKERKB	CVE-2022-23401	11 Mar 202209:15	–	attackerkb
Circl	CVE-2022-23401	11 Mar 202212:14	–	circl
CNNVD	Yokogawa Exaopc 代码问题漏洞	11 Mar 202200:00	–	cnnvd
Cvelist	CVE-2022-23401	11 Mar 202209:10	–	cvelist
EUVD	EUVD-2022-28479	3 Oct 202520:07	–	euvd
ICS	Yokogawa CENTUM and Exaopc	24 Mar 202200:00	–	ics
NCSC	Vulnerabilities fixed in Yokogawa CENTUM VP	14 Mar 202200:00	–	ncsc
NVD	CVE-2022-23401	11 Mar 202209:15	–	nvd
Prion	Code injection	11 Mar 202209:15	–	prion
RedhatCVE	CVE-2022-23401	23 May 202501:12	–	redhatcve

NVD

Vulners

Node

yokogawa centum_cs_3000_firmwareRanger3.08.10–r3.09.00

AND

yokogawa centum_cs_3000Match-

Node

yokogawa centum_cs_3000_entry_firmwareRanger3.08.10–r3.09.00

AND

yokogawa centum_cs_3000_entryMatch-

Node

yokogawa centum_vp_firmwareRanger4.01.00–r4.03.00

yokogawa centum_vp_firmwareRanger5.01.00–r5.04.20

yokogawa centum_vp_firmwareRanger6.01.00–r6.09.00

AND

yokogawa centum_vpMatch-

Node

yokogawa centum_vp_entry_firmwareRanger4.01.00–r4.03.00

yokogawa centum_vp_entry_firmwareRanger5.01.00–r5.04.20

yokogawa centum_vp_entry_firmwareRanger6.01.00–r6.09.00

AND

yokogawa centum_vp_entryMatch-

Node

yokogawa exaopcRanger3.72.00–r3.80.00

[
  {
    "product": "CENTUM CS 3000",
    "vendor": "Yokogawa Electric Corporation",
    "versions": [
      {
        "status": "affected",
        "version": "versions from R3.08.10 to R3.09.00"
      }
    ]
  },
  {
    "product": "CENTUM VP",
    "vendor": "Yokogawa Electric Corporation",
    "versions": [
      {
        "status": "affected",
        "version": "versions from R4.01.00 to R4.03.00"
      },
      {
        "status": "affected",
        "version": "versions from R5.01.00 to R5.04.20"
      },
      {
        "status": "affected",
        "version": "versions from R6.01.00 to R6.08.00"
      }
    ]
  },
  {
    "product": "Exaopc",
    "vendor": "Yokogawa Electric Corporation",
    "versions": [
      {
        "status": "affected",
        "version": "versions from R3.72.00 to R3.79.00"
      }
    ]
  }
]

Source	Link
web-material3	www.web-material3.yokogawa.com/1/32094/files/YSAR-22-0001-E.pdf

21 Nov 2024 06:48Current

7.5High risk

Vulners AI Score7.5

CVSS 23.7

CVSS 3.17.8

EPSS0.00061

CWE-427