← Back

CVE-2018-17898

nvd nist
Published: Oct 12, 2018Modified: Nov 21, 2024

JSON object

Loading...
7.5
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Exploitability: 3.9 / Impact: 3.6
Source: NVD

Description

Yokogawa STARDOM Controllers FCJ,FCN-100, FCN-RTU, FCN-500, All versions R4.10 and prior, The controller application fails to prevent memory exhaustion by unauthorized requests. This could allow an attacker to cause the controller to become unstable.

Affected (4)

Yokogawa
4 products
Fcj Firmware
Fcn 100 Firmware
Fcn Rtu Firmware
Fcn 500 Firmware
Configuration A
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Fcj Firmware
Up to r4.10
Running on/withPlatform Versions
Yokogawa
Fcj
All versions
Configuration B
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Fcn 100 Firmware
Up to r4.10
Running on/withPlatform Versions
Yokogawa
Fcn 100
All versions
Configuration C
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Fcn Rtu Firmware
Up to r4.10
Running on/withPlatform Versions
Yokogawa
Fcn Rtu
All versions
Configuration D
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Fcn 500 Firmware
Up to r4.10
Running on/withPlatform Versions
Yokogawa
Fcn 500
All versions

Related CWEs

CWE-400
Uncontrolled Resource Consumption
The product does not properly control the allocation and maintenance of a limited resource, thereby enabling an actor to influence the amount of resources consumed, eventually leading to the exhaustion of available resources.

References (4)

Source: ics-cert@hq.dhs.gov
Third Party AdvisoryUS Government Resource
Source: ics-cert@hq.dhs.gov
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryUS Government Resource
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory

Timeline

No history available yet.