Lucene search

JpcertCVELIST:CVE-2022-22145

HistoryMar 11, 2022 - 9:10 a.m.

CVE-2022-22145

2022-03-1109:10:45

CWE-400

jpcert

www.cve.org

cve-2022-22145

uncontrolled resource consumption

centum cs 3000

centum vp

exaopc

AI Score

8.2

Confidence

High

EPSS

0.001

Percentile

35.0%

JSON

CAMS for HIS Log Server contained in the following Yokogawa Electric products is vulnerable to uncontrolled resource consumption. CENTUM CS 3000 versions from R3.08.10 to R3.09.00, CENTUM VP versions from R4.01.00 to R4.03.00, from R5.01.00 to R5.04.20, from R6.01.00 to R6.08.00, Exaopc versions from R3.72.00 to R3.79.00.

CNA Affected

[
  {
    "product": "CENTUM CS 3000",
    "vendor": "Yokogawa Electric Corporation",
    "versions": [
      {
        "status": "affected",
        "version": "versions from R3.08.10 to R3.09.00"
      }
    ]
  },
  {
    "product": "CENTUM VP",
    "vendor": "Yokogawa Electric Corporation",
    "versions": [
      {
        "status": "affected",
        "version": "versions from R4.01.00 to R4.03.00"
      },
      {
        "status": "affected",
        "version": "versions from R5.01.00 to R5.04.20"
      },
      {
        "status": "affected",
        "version": "versions from R6.01.00 to R6.08.00"
      }
    ]
  },
  {
    "product": "Exaopc",
    "vendor": "Yokogawa Electric Corporation",
    "versions": [
      {
        "status": "affected",
        "version": "versions from R3.72.00 to R3.79.00"
      }
    ]
  }
]

References

web-material3.yokogawa.com/1/32094/files/YSAR-22-0001-E.pdf