CVE-2018-10592

Summary

Yokogawa STARDOM FCJ controllers R4.02 and prior, FCN-100 controllers R4.02 and prior, FCN-RTU controllers R4.02 and prior, and FCN-500 controllers R4.02 and prior utilize hard-coded credentials that could allow an attacker to gain unauthorized administrative access to the device, which could result in remote code execution.

Affected Software

VendorProductVersion RangeStatus
YokogawaSTARDOM FCJ ControllersR4.02 and prioraffected
YokogawaSTARDOM FCN-100 ControllersR4.02 and prioraffected
YokogawaSTARDOM FCN-RTU ControllersR4.02 and prioraffected
YokogawaSTARDOM FCN-500 ControllersR4.02 and prioraffected

Weaknesses

  • CWE-798: USE OF HARD-CODED CREDENTIALS CWE-798

ADP Enrichment

CVE Program Container

Additional References

References