Multiple Yokogawa products that contain Vnet/IP Open Communication Driver (CENTUM CS 3000(R3.05.00 - R3.09.50), CENTUM CS 3000 Entry Class(R3.05.00 - R3.09.50), CENTUM VP(R4.01.00 - R6.03.10), CENTUM VP Entry Class(R4.01.00 - R6.03.10), Exaopc(R3.10.00 - R3.75.00), PRM(R2.06.00 - R3.31.00), ProSafe-RS(R1.02.00 - R4.02.00), FAST/TOOLS(R9.02.00 - R10.02.00), B/M9000 VP(R6.03.01 - R8.01.90)) allows remote attackers to cause a denial of service attack that may result in stopping Vnet/IP Open Communication Driver's communication via unspecified vectors.

No CVSS v3.1

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

AV:N/AC:L/Au:N/C:N/I:N/A:P
Vendors Products
Yokogawa
  • Plant Resource Manager
  • Prosafe-rs
  • Centum Cs 3000 Entry Class
  • Exaopc
  • Centum Cs 3000
  • Fast\/tools
  • Centum Cs 3000 Firmware
  • Centum Vp Firmware
  • B\/m9000 Vp
  • Centum Vp Entry Class
  • Centum Vp

Configuration 1 [-]

AND
cpe:2.3:o:yokogawa:centum_cs_3000_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:yokogawa:centum_cs_3000:-:*:*:*:*:*:*:*

Configuration 2 [-]

cpe:2.3:a:yokogawa:centum_cs_3000_entry_class:*:*:*:*:*:*:*:*

Configuration 3 [-]

AND
cpe:2.3:o:yokogawa:centum_vp_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:yokogawa:centum_vp:-:*:*:*:*:*:*:*

Configuration 4 [-]

cpe:2.3:a:yokogawa:centum_vp_entry_class:*:*:*:*:*:*:*:*

Configuration 5 [-]

OR cpe:2.3:a:yokogawa:b\/m9000_vp:*:*:*:*:*:*:*:*
cpe:2.3:a:yokogawa:exaopc:*:*:*:*:*:*:*:*
cpe:2.3:a:yokogawa:fast\/tools:*:*:*:*:*:*:*:*
cpe:2.3:a:yokogawa:plant_resource_manager:*:*:*:*:*:*:*:*
cpe:2.3:a:yokogawa:prosafe-rs:*:*:*:*:*:*:*:*
References
Link Resource
http://www.securityfocus.com/bid/106442 VDB Entry Third Party Advisory
https://jvn.jp/vu/JVNVU93652047/index.html Third Party Advisory VDB Entry
https://web-material3.yokogawa.com/YSAR-18-0008-E.pdf Vendor Advisory
History

No history.

cve-icon MITRE Information

Status: PUBLISHED

Assigner: jpcert

Published: 2019-01-09T22:00:00

Updated: 2019-01-10T10:57:01

Reserved: 2018-08-30T00:00:00

Link: CVE-2018-16196

JSON object: View

cve-icon NVD Information

Status : Analyzed

Published: 2019-01-09T23:29:04.560

Modified: 2019-02-14T14:59:40.957

Link: CVE-2018-16196

JSON object: View

cve-icon Redhat Information

No data.

CWE