Skip to main content

Fcn 500 Firmware

5 CVEs product

Monthly

CVE-2018-17902 MEDIUM This Month

Yokogawa STARDOM Controllers FCJ, FCN-100, FCN-RTU, FCN-500, All versions R4.10 and prior, The application utilizes multiple methods of session management which could result in a denial of service to. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Session Fixation Denial Of Service Fcj Firmware Fcn 100 Firmware Fcn Rtu Firmware +1
NVD
CVSS 3.0
5.3
EPSS
1.1%
CVE-2018-17900 CRITICAL Act Now

Yokogawa STARDOM Controllers FCJ, FCN-100, FCN-RTU, FCN-500, All versions R4.10 and prior, The web application improperly protects credentials which could allow an attacker to obtain credentials for. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Fcj Firmware Fcn 100 Firmware Fcn Rtu Firmware Fcn 500 Firmware
NVD
CVSS 3.0
9.8
EPSS
1.9%
CVE-2018-17898 HIGH This Week

Yokogawa STARDOM Controllers FCJ,FCN-100, FCN-RTU, FCN-500, All versions R4.10 and prior, The controller application fails to prevent memory exhaustion by unauthorized requests. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Fcj Firmware Fcn 100 Firmware Fcn Rtu Firmware Fcn 500 Firmware
NVD
CVSS 3.0
7.5
EPSS
1.2%
CVE-2018-17896 HIGH This Week

Yokogawa STARDOM Controllers FCJ, FCN-100, FCN-RTU, FCN-500, All versions R4.10 and prior, The affected controllers utilize hard-coded credentials which may allow an attacker gain unauthorized access. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Authentication Bypass Fcj Firmware Fcn 100 Firmware Fcn Rtu Firmware Fcn 500 Firmware
NVD
CVSS 3.0
8.1
EPSS
1.2%
CVE-2018-10592 CRITICAL Act Now

Yokogawa STARDOM FCJ controllers R4.02 and prior, FCN-100 controllers R4.02 and prior, FCN-RTU controllers R4.02 and prior, and FCN-500 controllers R4.02 and prior utilize hard-coded credentials that. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass RCE Fcj Firmware Fcn 100 Firmware Fcn Rtu Firmware +1
NVD
CVSS 3.0
9.8
EPSS
6.9%
EPSS 1% CVSS 5.3
MEDIUM This Month

Yokogawa STARDOM Controllers FCJ, FCN-100, FCN-RTU, FCN-500, All versions R4.10 and prior, The application utilizes multiple methods of session management which could result in a denial of service to. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Session Fixation Denial Of Service Fcj Firmware +3
NVD
EPSS 2% CVSS 9.8
CRITICAL Act Now

Yokogawa STARDOM Controllers FCJ, FCN-100, FCN-RTU, FCN-500, All versions R4.10 and prior, The web application improperly protects credentials which could allow an attacker to obtain credentials for. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Fcj Firmware Fcn 100 Firmware +2
NVD
EPSS 1% CVSS 7.5
HIGH This Week

Yokogawa STARDOM Controllers FCJ,FCN-100, FCN-RTU, FCN-500, All versions R4.10 and prior, The controller application fails to prevent memory exhaustion by unauthorized requests. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Fcj Firmware Fcn 100 Firmware +2
NVD
EPSS 1% CVSS 8.1
HIGH This Week

Yokogawa STARDOM Controllers FCJ, FCN-100, FCN-RTU, FCN-500, All versions R4.10 and prior, The affected controllers utilize hard-coded credentials which may allow an attacker gain unauthorized access. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Authentication Bypass Fcj Firmware Fcn 100 Firmware +2
NVD
EPSS 7% CVSS 9.8
CRITICAL Act Now

Yokogawa STARDOM FCJ controllers R4.02 and prior, FCN-100 controllers R4.02 and prior, FCN-RTU controllers R4.02 and prior, and FCN-500 controllers R4.02 and prior utilize hard-coded credentials that. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass RCE Fcj Firmware +3
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy