CVE-2022-26034
published 2022-04-15CVE-2022-26034: Improper authentication vulnerability in the communication protocol provided by AD (Automation Design) server of CENTUM VP R6.01.10 to R6.09.00, CENTUM VP…
PriorityP354critical9.1CVSS 3.1
AVNACLPRNUINSUCHIHAN
EPSS
0.92%
55.7th percentile
Improper authentication vulnerability in the communication protocol provided by AD (Automation Design) server of CENTUM VP R6.01.10 to R6.09.00, CENTUM VP Small R6.01.10 to R6.09.00, CENTUM VP Basic R6.01.10 to R6.09.00, and B/M9000 VP R8.01.01 to R8.03.01 allows an attacker to use the functions provided by AD server. This may lead to leakage or tampering of data managed by AD server.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| yokogawa | b_m9000_vp | r8.01.01 – r8.03.01 | — |
| yokogawa | centum_vp | r6.01.10 – r6.09.00 | — |
| yokogawa | centum_vp | r6.01.10 – r06.09.00 | — |
| yokogawa_electric_corporation | centum_vp_series_with_vp6e5000_installed_and_b_m9000_vp | — | — |
CVSS provenance
nvdv3.19.1CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
nvdv2.05.8MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:N
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
CISA ICS
Yokogawa CENTUM and ProSafe-RS
cisa_ics·2022-05-03·CVSS 5.0
[MEDIUM] Yokogawa CENTUM and ProSafe-RS
## Archived Content In an effort to keep CISA.gov current, the archive contains outdated information that may not reflect current policy or programs.
ICS Advisory
##
Yokogawa CENTUM and ProSafe-RS
Last RevisedMay 03, 2022
Alert CodeICSA-22-123-01
## 1. EXECUTIVE SUMMARY
- CVSS v3 7.5
- ATTENTION: Exploitable remotely/low attack complexity
- Vendor: Yokogawa
- Equipment: CENTUM and ProSafe-RS
- Vulnerabilities: OS Command Injection, Improper Authentication, NULL Pointer Dereference, Improper Input Validation, Resource Management Errors
## 2. RISK EVALUATION
Successful exploitation of these vulnerabilities may allow leakage/tampering of data, cause a denial-of-service condition, or allow a local attacker to execute arbitrary programs.
#
GHSA
GHSA-6r8v-ww3c-grvh: Improper authentication vulnerability in the communication protocol provided by AD (Automation Design) server of CENTUM VP R6
ghsa_unreviewed·2022-04-16
CVE-2022-26034 [CRITICAL] CWE-287 GHSA-6r8v-ww3c-grvh: Improper authentication vulnerability in the communication protocol provided by AD (Automation Design) server of CENTUM VP R6
Improper authentication vulnerability in the communication protocol provided by AD (Automation Design) server of CENTUM VP R6.01.10 to R6.09.00, CENTUM VP Small R6.01.10 to R6.09.00, CENTUM VP Basic R6.01.10 to R6.09.00, and B/M9000 VP R8.01.01 to R8.03.01 allows an attacker to use the functions provided by AD server. This may lead to leakage or tampering of data managed by AD server.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2022-04-15
Published