VYPR

STARDOM Controllers

by Yokogawa

CVEs (7)

  • CVE-2018-10592CriJul 31, 2018
    risk 0.64cvss 9.8epss 0.07

    Yokogawa STARDOM FCJ controllers R4.02 and prior, FCN-100 controllers R4.02 and prior, FCN-RTU controllers R4.02 and prior, and FCN-500 controllers R4.02 and prior utilize hard-coded credentials that could allow an attacker to gain unauthorized administrative access to the…

  • CVE-2016-4860HigSep 19, 2016
    risk 0.48cvss 7.3epss 0.03

    Yokogawa STARDOM FCN/FCJ controller R1.01 through R4.01 does not require authentication for Logic Designer connections, which allows remote attackers to reconfigure the device or cause a denial of service via a (1) stop application program, (2) change value, or (3) modify…

  • CVE-2022-29519Jun 28, 2022
    risk 0.00cvss epss 0.00

    Cleartext transmission of sensitive information vulnerability exists in STARDOM FCN Controller and FCJ Controller R1.01 to R4.31, which may allow an adjacent attacker to login the affected products and alter device configuration settings or tamper with device firmware.

  • CVE-2018-17896Oct 12, 2018
    risk 0.00cvss epss 0.01

    Yokogawa STARDOM Controllers FCJ, FCN-100, FCN-RTU, FCN-500, All versions R4.10 and prior, The affected controllers utilize hard-coded credentials which may allow an attacker gain unauthorized access to the maintenance functions and obtain or modify information. This attack can…

  • CVE-2018-17902Oct 12, 2018
    risk 0.00cvss epss 0.01

    Yokogawa STARDOM Controllers FCJ, FCN-100, FCN-RTU, FCN-500, All versions R4.10 and prior, The application utilizes multiple methods of session management which could result in a denial of service to the remote management functions.

  • CVE-2018-17898Oct 12, 2018
    risk 0.00cvss epss 0.01

    Yokogawa STARDOM Controllers FCJ,FCN-100, FCN-RTU, FCN-500, All versions R4.10 and prior, The controller application fails to prevent memory exhaustion by unauthorized requests. This could allow an attacker to cause the controller to become unstable.

  • CVE-2018-17900Oct 12, 2018
    risk 0.00cvss epss 0.02

    Yokogawa STARDOM Controllers FCJ, FCN-100, FCN-RTU, FCN-500, All versions R4.10 and prior, The web application improperly protects credentials which could allow an attacker to obtain credentials for remote access to controllers.