Denial of Service Vulnerability in Yokogawa's Communication Driver
CVE-2018-16196

7.5HIGH

Key Information:

Vendor
Yokogawa Electric Corporation
Status
Multiple Yokogawa Products That Contain Vnet/ip Open Communication Driver
Vendor
CVE Published:
9 January 2019

Summary

Multiple Yokogawa products that utilize the Vnet/IP Open Communication Driver are susceptible to a denial of service vulnerability. This flaw enables remote attackers to disrupt communication processes, potentially halting the functionality of affected systems. The impact varies across multiple versions, resulting in operational interruptions that could compromise system integrity. Organizations utilizing these products should evaluate their exposure and apply necessary security measures.

Affected Version(s)

Multiple Yokogawa products that contain Vnet/IP Open Communication Driver (CENTUM CS 3000(R3.05.00 - R3.09.50), CENTUM CS 3000 Entry Class(R3.05.00 - R3.09.50), CENTUM VP(R4.01.00 - R6.03.10), CENTUM VP Entry Class(R4.01.00 - R6.03.10), Exaopc(R3.10.00 - R3.75.00), PRM(R2.06.00 - R3.31.00), ProSafe-RS(R1.02.00 - R4.02.00), FAST/TOOLS(R9.02.00 - R10.02.00), B/M9000 VP(R6.03.01 - R8.01.90))

References

http://www.securityfocus.com/bid/106442
vdb-entryx_refsource_BID
https://jvn.jp/vu/JVNVU93652047/index.html
x_refsource_MISC
https://web-material3.yokogawa.com/YSAR-18-0008-E.pdf
x_refsource_MISC

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.