Vulnerability Details CVE-2018-17900
Yokogawa STARDOM Controllers FCJ, FCN-100, FCN-RTU, FCN-500, All versions R4.10 and prior, The web application improperly protects credentials which could allow an attacker to obtain credentials for remote access to controllers.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 49.5%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 5.0
References
Products affected by CVE-2018-17900
-
cpe:2.3:h:yokogawa:fcj:-
-
cpe:2.3:h:yokogawa:fcn-100:-
-
cpe:2.3:h:yokogawa:fcn-500:-
-
cpe:2.3:h:yokogawa:fcn-rtu:-
-
cpe:2.3:o:yokogawa:fcj_firmware:r1.60
-
cpe:2.3:o:yokogawa:fcj_firmware:r1.70
-
cpe:2.3:o:yokogawa:fcj_firmware:r1.80
-
cpe:2.3:o:yokogawa:fcj_firmware:r1.85
-
cpe:2.3:o:yokogawa:fcj_firmware:r1.86
-
cpe:2.3:o:yokogawa:fcj_firmware:r1.90
-
cpe:2.3:o:yokogawa:fcj_firmware:r2.01
-
cpe:2.3:o:yokogawa:fcj_firmware:r2.10
-
cpe:2.3:o:yokogawa:fcj_firmware:r2.20
-
cpe:2.3:o:yokogawa:fcj_firmware:r3.01
-
cpe:2.3:o:yokogawa:fcj_firmware:r3.02
-
cpe:2.3:o:yokogawa:fcj_firmware:r3.03
-
cpe:2.3:o:yokogawa:fcj_firmware:r3.10
-
cpe:2.3:o:yokogawa:fcj_firmware:r3.20
-
cpe:2.3:o:yokogawa:fcj_firmware:r3.30
-
cpe:2.3:o:yokogawa:fcj_firmware:r3.40
-
cpe:2.3:o:yokogawa:fcj_firmware:r3.50
-
cpe:2.3:o:yokogawa:fcj_firmware:r4.02
-
cpe:2.3:o:yokogawa:fcj_firmware:r4.10
-
cpe:2.3:o:yokogawa:fcn-100_firmware:r1.60
-
cpe:2.3:o:yokogawa:fcn-100_firmware:r1.70
-
cpe:2.3:o:yokogawa:fcn-100_firmware:r1.80
-
cpe:2.3:o:yokogawa:fcn-100_firmware:r1.85
-
cpe:2.3:o:yokogawa:fcn-100_firmware:r1.86
-
cpe:2.3:o:yokogawa:fcn-100_firmware:r1.90
-
cpe:2.3:o:yokogawa:fcn-100_firmware:r2.01
-
cpe:2.3:o:yokogawa:fcn-100_firmware:r2.10
-
cpe:2.3:o:yokogawa:fcn-100_firmware:r2.20
-
cpe:2.3:o:yokogawa:fcn-100_firmware:r3.01
-
cpe:2.3:o:yokogawa:fcn-100_firmware:r3.02
-
cpe:2.3:o:yokogawa:fcn-100_firmware:r3.03
-
cpe:2.3:o:yokogawa:fcn-100_firmware:r3.10
-
cpe:2.3:o:yokogawa:fcn-100_firmware:r3.20
-
cpe:2.3:o:yokogawa:fcn-100_firmware:r3.30
-
cpe:2.3:o:yokogawa:fcn-100_firmware:r3.40
-
cpe:2.3:o:yokogawa:fcn-100_firmware:r3.50
-
cpe:2.3:o:yokogawa:fcn-100_firmware:r4.02
-
cpe:2.3:o:yokogawa:fcn-100_firmware:r4.10
-
cpe:2.3:o:yokogawa:fcn-500_firmware:r1.60
-
cpe:2.3:o:yokogawa:fcn-500_firmware:r1.70
-
cpe:2.3:o:yokogawa:fcn-500_firmware:r1.80
-
cpe:2.3:o:yokogawa:fcn-500_firmware:r1.85
-
cpe:2.3:o:yokogawa:fcn-500_firmware:r1.86
-
cpe:2.3:o:yokogawa:fcn-500_firmware:r1.90
-
cpe:2.3:o:yokogawa:fcn-500_firmware:r2.01
-
cpe:2.3:o:yokogawa:fcn-500_firmware:r2.10
-
cpe:2.3:o:yokogawa:fcn-500_firmware:r2.20
-
cpe:2.3:o:yokogawa:fcn-500_firmware:r3.01
-
cpe:2.3:o:yokogawa:fcn-500_firmware:r3.02
-
cpe:2.3:o:yokogawa:fcn-500_firmware:r3.03
-
cpe:2.3:o:yokogawa:fcn-500_firmware:r3.10
-
cpe:2.3:o:yokogawa:fcn-500_firmware:r3.20
-
cpe:2.3:o:yokogawa:fcn-500_firmware:r3.30
-
cpe:2.3:o:yokogawa:fcn-500_firmware:r3.40
-
cpe:2.3:o:yokogawa:fcn-500_firmware:r3.50
-
cpe:2.3:o:yokogawa:fcn-500_firmware:r4.02
-
cpe:2.3:o:yokogawa:fcn-500_firmware:r4.10
-
cpe:2.3:o:yokogawa:fcn-rtu_firmware:r1.60
-
cpe:2.3:o:yokogawa:fcn-rtu_firmware:r1.70
-
cpe:2.3:o:yokogawa:fcn-rtu_firmware:r1.80
-
cpe:2.3:o:yokogawa:fcn-rtu_firmware:r1.85
-
cpe:2.3:o:yokogawa:fcn-rtu_firmware:r1.86
-
cpe:2.3:o:yokogawa:fcn-rtu_firmware:r1.90
-
cpe:2.3:o:yokogawa:fcn-rtu_firmware:r2.01
-
cpe:2.3:o:yokogawa:fcn-rtu_firmware:r2.10
-
cpe:2.3:o:yokogawa:fcn-rtu_firmware:r2.20
-
cpe:2.3:o:yokogawa:fcn-rtu_firmware:r3.01
-
cpe:2.3:o:yokogawa:fcn-rtu_firmware:r3.02
-
cpe:2.3:o:yokogawa:fcn-rtu_firmware:r3.03
-
cpe:2.3:o:yokogawa:fcn-rtu_firmware:r3.10
-
cpe:2.3:o:yokogawa:fcn-rtu_firmware:r3.20
-
cpe:2.3:o:yokogawa:fcn-rtu_firmware:r3.30
-
cpe:2.3:o:yokogawa:fcn-rtu_firmware:r3.40
-
cpe:2.3:o:yokogawa:fcn-rtu_firmware:r3.50
-
cpe:2.3:o:yokogawa:fcn-rtu_firmware:r4.02
-
cpe:2.3:o:yokogawa:fcn-rtu_firmware:r4.10