CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2016-4860

Yokogawa STARDOM FCN/FCJ controller R1.01 through R4.01 does not require authentication for Logic Designer connections, which allows remote attackers to reconfigure the device or cause a denial of service via a (1) stop application program, (2) change value, or (3) modify application command.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.009

EPSS Ranking 75.0%

CVSS Severity

CVSS v3 Score 7.3

CVSS v2 Score 7.5

References

http://www.securityfocus.com/bid/92981
https://ics-cert.us-cert.gov/advisories/ICSA-16-259-01
https://web-material3.yokogawa.com/YSAR-16-0002-E.pdf
http://www.securityfocus.com/bid/92981
https://ics-cert.us-cert.gov/advisories/ICSA-16-259-01
https://web-material3.yokogawa.com/YSAR-16-0002-E.pdf

Products affected by CVE-2016-4860

Yokogawa » Stardom Fcn/fcj » Version: r1.01

cpe:2.3:a:yokogawa:stardom_fcn/fcj:r1.01
Yokogawa » Stardom Fcn/fcj » Version: r2.01

cpe:2.3:a:yokogawa:stardom_fcn/fcj:r2.01
Yokogawa » Stardom Fcn/fcj » Version: r3.01

cpe:2.3:a:yokogawa:stardom_fcn/fcj:r3.01
Yokogawa » Stardom Fcn/fcj » Version: r4.01

cpe:2.3:a:yokogawa:stardom_fcn/fcj:r4.01

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2016-4860

Products

Pricing

Contact Us