Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2018-0651
HistoryJan 09, 2019 - 11:29 p.m.

CVE-2018-0651

2019-01-0923:29:01
CWE-119
[email protected]
web.nvd.nist.gov
30
cve-2018-0651
yokogawa
buffer overflow
license management
remote attack
security vulnerability

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.5 High

AI Score

Confidence

High

0.007 Low

EPSS

Percentile

79.9%

JSON

Buffer overflow in the license management function of YOKOGAWA products (iDefine for ProSafe-RS R1.16.3 and earlier, STARDOM VDS R7.50 and earlier, STARDOM FCN/FCJ Simulator R4.20 and earlier, ASTPLANNER R15.01 and earlier, TriFellows V5.04 and earlier) allows remote attackers to stop the license management function or execute an arbitrary program via unspecified vectors.

Affected configurations

NVD
Node
yokogawaidefine_for_prosafe-rsMatch-
AND
yokogawaidefine_for_prosafe-rs_firmwareRanger1.16.3
Node
yokogawastardom_versatile_data_serverMatch-
AND
yokogawastardom_versatile_data_server_firmwareRanger7.50
Node
yokogawastardom_fcn\/fcj_simulatorMatch-
AND
yokogawastardom_fcn\/fcj_simulator_firmwareRanger4.20
Node
yokogawaastplannerRanger15.01
Node
yokogawatrifellowsRangev5.04

CNA Affected

[
  {
    "product": "The license management function of YOKOGAWA products",
    "vendor": "Yokogawa Electric Corporation",
    "versions": [
      {
        "status": "affected",
        "version": "(iDefine for ProSafe-RS R1.16.3 and earlier, STARDOM VDS R7.50 and earlier, STARDOM FCN/FCJ Simulator R4.20 and earlier, ASTPLANNER R15.01 and earlier, TriFellows V5.04 and earlier)"
      }
    ]
  }
]

Related

ics 1
prion 1
nvd 1
nessus 2
cvelist 1
ics
ics
Yokogawa iDefine, STARDOM, ASTPLANNER, and TriFellows
2018-08-21 12:00:00
prion
prion
Buffer overflow
2019-01-09 23:29:00
nvd
nvd
CVE-2018-0651
2019-01-09 23:29:01
nessus
nessus
Yokogawa Idefine Improper Restriction of Operations within the Bounds of a Memory Buffer
2020-05-27 00:00:00
Yokogawa iDefine, STARDOM, ASTPLANNER, and TriFellows Stack-Based Buffer Overflow (CVE-2018-0651)
2022-02-07 00:00:00
cvelist
cvelist
CVE-2018-0651
2019-01-09 22:00:00

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.5 High

AI Score

Confidence

High

0.007 Low

EPSS

Percentile

79.9%

JSON
Related for CVE-2018-0651
ics1prion1nvd1nessus2cvelist1