The following Yokogawa Electric products hard-code the password for CAMS server applications: CENTUM VP versions from R5.01.00 to R5.04.20 and versions from R6.01.00 to R6.08.00, Exaopc versions from R3.72.00 to R3.79.00
References
Link | Resource |
---|---|
https://web-material3.yokogawa.com/1/32094/files/YSAR-22-0001-E.pdf | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
|
History
18 Mar 2022, 14:04
Type | Values Removed | Values Added |
---|---|---|
References | (CONFIRM) https://web-material3.yokogawa.com/1/32094/files/YSAR-22-0001-E.pdf - Vendor Advisory | |
CWE | CWE-798 | |
First Time |
Yokogawa centum Vp Firmware
Yokogawa Yokogawa centum Vp Entry Firmware Yokogawa centum Vp Yokogawa exaopc Yokogawa centum Vp Entry |
|
CVSS |
v2 : v3 : |
v2 : 7.5
v3 : 9.8 |
CPE | cpe:2.3:o:yokogawa:centum_vp_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:yokogawa:centum_vp_entry_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:yokogawa:centum_vp_entry:-:*:*:*:*:*:*:* cpe:2.3:h:yokogawa:centum_vp:-:*:*:*:*:*:*:* cpe:2.3:a:yokogawa:exaopc:*:*:*:*:*:*:*:* |
11 Mar 2022, 09:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-03-11 09:15
Updated : 2023-12-10 14:22
NVD link : CVE-2022-23402
Mitre link : CVE-2022-23402
CVE.ORG link : CVE-2022-23402
JSON object : View
Products Affected
yokogawa
- centum_vp_entry
- centum_vp
- exaopc
- centum_vp_entry_firmware
- centum_vp_firmware
CWE
CWE-798
Use of Hard-coded Credentials