CVE-2018-17902
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
AI Score
Confidence
High
EPSS
Percentile
42.1%
Yokogawa STARDOM Controllers FCJ, FCN-100, FCN-RTU, FCN-500, All versions R4.10 and prior, The application utilizes multiple methods of session management which could result in a denial of service to the remote management functions.
Affected configurations
| Vendor | Product | Version | CPE |
|---|---|---|---|
| yokogawa | fcj_firmware | * | cpe:2.3:o:yokogawa:fcj_firmware:*:*:*:*:*:*:*:* |
| yokogawa | fcj | - | cpe:2.3:h:yokogawa:fcj:-:*:*:*:*:*:*:* |
| yokogawa | fcn-100_firmware | * | cpe:2.3:o:yokogawa:fcn-100_firmware:*:*:*:*:*:*:*:* |
| yokogawa | fcn-100 | - | cpe:2.3:h:yokogawa:fcn-100:-:*:*:*:*:*:*:* |
| yokogawa | fcn-rtu_firmware | * | cpe:2.3:o:yokogawa:fcn-rtu_firmware:*:*:*:*:*:*:*:* |
| yokogawa | fcn-rtu | - | cpe:2.3:h:yokogawa:fcn-rtu:-:*:*:*:*:*:*:* |
| yokogawa | fcn-500_firmware | * | cpe:2.3:o:yokogawa:fcn-500_firmware:*:*:*:*:*:*:*:* |
| yokogawa | fcn-500 | - | cpe:2.3:h:yokogawa:fcn-500:-:*:*:*:*:*:*:* |
Related
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
AI Score
Confidence
High
EPSS
Percentile
42.1%