Code injection

2018-10-1214:29:00

PRIOn knowledge base

www.prio-n.com

7.8 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

44.9%

JSON

Yokogawa STARDOM Controllers FCJ,FCN-100, FCN-RTU, FCN-500, All versions R4.10 and prior, The controller application fails to prevent memory exhaustion by unauthorized requests. This could allow an attacker to cause the controller to become unstable.

CPENameOperatorVersion
fcj_firmwareeq<= r4.10
fcn-100_firmwareeq<= r4.10
fcn-500_firmwareeq<= r4.10
fcn-rtu_firmwareeq<= r4.10

Name	Operator	Version
fcj_firmware	eq	<= r4.10
fcn-100_firmware	eq	<= r4.10
fcn-500_firmware	eq	<= r4.10
fcn-rtu_firmware	eq	<= r4.10

References

ics-cert.us-cert.gov/advisories/ICSA-18-151-03

web-material3.yokogawa.com/YSAR-18-0007-E.pdf