← Back

CVE-2022-29519

nvd nist
Published: Jun 28, 2022Modified: Nov 21, 2024

JSON object

Loading...
7.5
Vector
CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Exploitability: 1.6 / Impact: 5.9
Source: NVD

Description

Cleartext transmission of sensitive information vulnerability exists in STARDOM FCN Controller and FCJ Controller R1.01 to R4.31, which may allow an adjacent attacker to login the affected products and alter device configuration settings or tamper with device firmware.

Affected (2)

Yokogawa
2 products
Stardom Fcj Firmware
Stardom Fcn Firmware
Configuration A
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Stardom Fcj Firmware
From r1.01 to r4.31
Running on/withPlatform Versions
Yokogawa
Stardom Fcj
All versions
Configuration B
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Stardom Fcn Firmware
From r1.01 to r4.31
Running on/withPlatform Versions
Yokogawa
Stardom Fcn
All versions

Related CWEs

CWE-319
Cleartext Transmission of Sensitive Information
The product transmits sensitive or security-critical data in cleartext in a communication channel that can be sniffed by unauthorized actors.

References (8)

Source: vultures@jpcert.or.jp
MitigationThird Party AdvisoryVDB Entry
Source: vultures@jpcert.or.jp
MitigationVendor Advisory
Source: vultures@jpcert.or.jp
MitigationVendor Advisory
Source: vultures@jpcert.or.jp
MitigationThird Party AdvisoryUS Government Resource
Source: af854a3a-2127-422b-91ae-364da2661108
MitigationThird Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
MitigationVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
MitigationVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
MitigationThird Party AdvisoryUS Government Resource

Timeline

No history available yet.