Uncontrolled Resource Consumption in Yokogawa Electric Products
CVE-2022-22145
8.1HIGH
Key Information:
- Vendor
- CVE Published:
- 11 March 2022
Summary
Yokogawa Electric's CAMS for HIS Log Server is susceptible to a vulnerability that allows for uncontrolled resource consumption, potentially leading to service disruptions. The affected products include various versions of CENTUM CS 3000, CENTUM VP, and Exaopc. Administrators are urged to evaluate their systems for the specified versions and apply necessary mitigations to safeguard against potential exploitation.
Affected Version(s)
CENTUM CS 3000 versions from R3.08.10 to R3.09.00
CENTUM VP versions from R4.01.00 to R4.03.00
CENTUM VP versions from R5.01.00 to R5.04.20
References
CVSS V3.1
Score:
8.1
Severity:
HIGH
Confidentiality:
None
Integrity:
High
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved