CVE-2024-4105
published 2024-06-26CVE-2024-4105: A vulnerability has been found in FAST/TOOLS and CI Server. The affected product's WEB HMI server's function to process HTTP requests has a security flaw…
PriorityP431medium5.8CVSS 3.1
AVNACLPRNUINSCCLINAN
EPSS
0.48%
37.6th percentile
A vulnerability has been found in FAST/TOOLS and CI Server. The affected product's WEB HMI server's function to process HTTP requests has a security flaw (Reflected XSS) that allows the execution of malicious scripts. Therefore, if a client PC with inadequate security measures accesses a product URL containing a malicious request, the malicious script may be executed on the client PC.
The affected products and versions are as follows:
FAST/TOOLS (Packages: RVSVRN, UNSVRN, HMIWEB, FTEES, HMIMOB) R9.01 to R10.04
CI Server R1.01.00 to R1.03.00
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| yokogawa_electric_corporation | ci_server | R1.01.00 – R1.03.00 | — |
| yokogawa_electric_corporation | fast_tools | R9.01 – R10.04 | — |
CVSS provenance
nvdv3.15.8MEDIUMCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N
vendor_redhat5.5MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
kernel: dm-raid: Fix WARN_ON_ONCE check for sync_thread in raid_resume
vendor_redhat·2024-08-17·CVSS 5.5
CVE-2024-43820 [MEDIUM] CWE-839 kernel: dm-raid: Fix WARN_ON_ONCE check for sync_thread in raid_resume
kernel: dm-raid: Fix WARN_ON_ONCE check for sync_thread in raid_resume
In the Linux kernel, the following vulnerability has been resolved:
dm-raid: Fix WARN_ON_ONCE check for sync_thread in raid_resume
rm-raid devices will occasionally trigger the following warning when
being resumed after a table load because DM_RECOVERY_RUNNING is set:
WARNING: CPU: 7 PID: 5660 at drivers/md/dm-raid.c:4105 raid_resume+0xee/0x100 [dm_raid]
The failing check is:
WARN_ON_ONCE(test_bit(MD_RECOVERY_RUNNING, &mddev->recovery));
This check is designed to make sure that the sync thread isn't
registered, but md_check_recovery can set MD_RECOVERY_RUNNING without
the sync_thread ever getting registered. Instead of checking if
MD_RECOVERY_RUNNING is set, check if sync_thread is non-NULL.
Package: kernel (Red Hat E
CISA ICS
Yokogawa FAST/TOOLS and CI Server
cisa_ics·2024-06-27·CVSS 5.8
[MEDIUM] Yokogawa FAST/TOOLS and CI Server
ICS Advisory
##
Yokogawa FAST/TOOLS and CI Server
Release DateJune 27, 2024
Alert CodeICSA-24-179-03
Related topics:
Industrial Control System Vulnerabilities, Industrial Control Systems
View CSAF
## 1. EXECUTIVE SUMMARY
- CVSS v4 6.9
- ATTENTION: Exploitable remotely/low attack complexity
- Vendor: Yokogawa
- Equipment: FAST/TOOLS and CI Server
- Vulnerabilities: Cross-site Scripting, Empty Password in Configuration File
## 2. RISK EVALUATION
Successful exploitation of these vulnerabilities could allow an attacker to launch a malicious script and take control of affected products.
## 3. TECHNICAL DETAILS
## 3.1 AFFECTED PRODUCTS
The following versions of Yokogawa FAST/TOOLS and CI Server, SCADA software environments, are affected:
- FAST/TOOLS RVSV
GHSA
GHSA-wf34-93rm-qpcq: A vulnerability has been found in FAST/TOOLS and CI Server
ghsa_unreviewed·2024-06-26
CVE-2024-4105 [MEDIUM] CWE-79 GHSA-wf34-93rm-qpcq: A vulnerability has been found in FAST/TOOLS and CI Server
A vulnerability has been found in FAST/TOOLS and CI Server. The affected product's WEB HMI server's function to process HTTP requests has a security flaw (Reflected XSS) that allows the execution of malicious scripts. Therefore, if a client PC with inadequate security measures accesses a product URL containing a malicious request, the malicious script may be executed on the client PC.
The affected products and versions are as follows:
FAST/TOOLS (Packages: RVSVRN, UNSVRN, HMIWEB, FTEES, HMIMOB) R9.01 to R10.04
CI Server R1.01.00 to R1.03.00
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2024-06-26
Published