OS command injection vulnerability exists in CENTUM VP R4.01.00 to R4.03.00, CENTUM VP Small R4.01.00 to R4.03.00, CENTUM VP Basic R4.01.00 to R4.03.00, and B/M9000 VP R6.01.01 to R6.03.02, which may allow an attacker who can access the computer where the affected product is installed to execute an arbitrary OS command by altering a file generated using Graphic Builder.
References
Link | Resource |
---|---|
https://jvn.jp/vu/JVNVU99204686/index.html | Third Party Advisory |
https://www.yokogawa.com/library/resources/white-papers/yokogawa-security-advisory-report-list/ | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: jpcert
Published: 2022-04-15T01:45:23
Updated: 2022-04-15T01:45:23
Reserved: 2022-04-01T00:00:00
Link: CVE-2022-27188
JSON object: View
NVD Information
Status : Analyzed
Published: 2022-04-15T02:15:08.133
Modified: 2022-04-22T12:44:10.330
Link: CVE-2022-27188
JSON object: View
Redhat Information
No data.
CWE