20 matches found
EUVD-2018-9639
Malware in sbrugna...
EUVD-2018-9637
Malware in sbrugna...
EUVD-2018-9641
Malware in sbrugna...
CVE-2022-30997
Use of hard-coded credentials vulnerability exists in STARDOM FCN Controller and FCJ Controller R4.10 to R4.31, which may allow an attacker with an administrative privilege to read/change configuration settings or update the controller with tampered firmware...
Yokogawa Electric Security Breach
Yokogawa Electric is a server of Yokogawa Electric Yokogawa Corporation in Japan. A security vulnerability exists in Yokogawa Electric Corporation STARDOM FCN/FCJ versions R1.01 through R4.31 that originates from uncontrolled resource consumption. An attacker could cause a denial of service...
CVE-2022-29519
Cleartext transmission of sensitive information vulnerability exists in STARDOM FCN Controller and FCJ Controller R1.01 to R4.31, which may allow an adjacent attacker to login the affected products and alter device configuration settings or tamper with device firmware...
Yokogawa STARDOM Controllers <= R4.10 Session Fixation
Binary data 720140.prm...
Yokogawa STARDOM Controllers <= R4.10 Resource Exhaustion
Binary data 720138.prm...
CVE-2018-17900
Yokogawa STARDOM Controllers FCJ, FCN-100, FCN-RTU, FCN-500, All versions R4.10 and prior, The web application improperly protects credentials which could allow an attacker to obtain credentials for remote access to controllers...
CVE-2018-17900
Yokogawa STARDOM Controllers FCJ, FCN-100, FCN-RTU, FCN-500, All versions R4.10 and prior, The web application improperly protects credentials which could allow an attacker to obtain credentials for remote access to controllers...
CVE-2018-17902
Yokogawa STARDOM Controllers FCJ, FCN-100, FCN-RTU, FCN-500, All versions R4.10 and prior, The application utilizes multiple methods of session management which could result in a denial of service to the remote management functions...
Code injection
Yokogawa STARDOM Controllers FCJ,FCN-100, FCN-RTU, FCN-500, All versions R4.10 and prior, The controller application fails to prevent memory exhaustion by unauthorized requests. This could allow an attacker to cause the controller to become unstable...
CVE-2018-17896
Yokogawa STARDOM Controllers FCJ, FCN-100, FCN-RTU, FCN-500, All versions R4.10 and prior, The affected controllers utilize hard-coded credentials which may allow an attacker gain unauthorized access to the maintenance functions and obtain or modify information. This attack can be executed only...
CVE-2018-17896
CVE-2018-17896 affects Yokogawa STARDOM controllers FCJ, FCN-100, FCN-RTU, FCN-500 (versions R4.10 and earlier). The vulnerability stems from hard-coded credentials that could allow an attacker to gain unauthorized maintenance access and view/modify information, with exploitation possible during ...
CVE-2018-17902
The CVE-2018-17902 entry applies to Yokogawa STARDOM Controllers FCJ, FCN-100, FCN-RTU, and FCN-500 (R4.10 and prior). The issue is due to multiple session-management methods that could lead to a denial of service of remote management functions (Session Fixation/Wrong handling). The ICS advisory ...
CVE-2018-17898
CVE-2018-17898 affects Yokogawa STARDOM Controllers (FCJ, FCN-100, FCN-RTU, FCN-500) on R4.10 and earlier. The issue is memory exhaustion caused by unauthorized requests, potentially making the controller unstable. Update/mitigation: Yokogawa states the memory exhaustion vulnerability is addresse...
CVE-2018-17900
Yokogawa STARDOM Controllers (FCJ, FCN-100, FCN-RTU, FCN-500; all versions R4.10 and prior) are affected by CVE-2018-17900 due to the web application’s insufficient protection of credentials, enabling an attacker to obtain remote-access credentials. The issue stems from inadequate credential hand...
CVE-2018-17898
Yokogawa STARDOM Controllers FCJ,FCN-100, FCN-RTU, FCN-500, All versions R4.10 and prior, The controller application fails to prevent memory exhaustion by unauthorized requests. This could allow an attacker to cause the controller to become unstable...
Yokogawa STARDOM Certification Bypass Vulnerability
The Yokogawa STARDOM FCN/FCJ controller is a controller for use in network-based control systems. The Yokogawa STARDOM FCN/FCJ controller fails to require authentication for Logic Designer connections, which could be used by a remote attacker to submit a special request to control the device...
CVE-2016-4860
Yokogawa STARDOM FCN/FCJ controller R1.01 through R4.01 does not require authentication for Logic Designer connections, which allows remote attackers to reconfigure the device or cause a denial of service via a 1 stop application program, 2 change value, or 3 modify application command...