Yokogawa Security Advisory Report List

2020

Sep 25, 2020 YSAR-20-0002: Vulnerability in WideField3
Jul 31, 2020 YSAR-20-0001: Vulnerabilities in CAMS for HIS (update : December 2, 2020)

 

2019

Sep 27, 2019 YSAR-19-0003: “Unquoted service path” vulnerability in Yokogawa Products Add quotes (update : July 31, 2020)
May 17, 2019 YSAR-19-0002: Vulnerability of Microsoft CAPICOM in Yokogawa Products
January 25, 2019 YSAR-19-0001: Vulnerability of access control in License Manager Service of Yokogawa products (update : February 28, 2019)

 

2018

     

Dec 21, 2018 YSAR-18-0008: Denial of Service (DoS) vulnerability in Vnet/IP Open Communication Driver
Sep 28, 2018 YSAR-18-0007: Vulnerabilities in STARDOM controllers
Aug 17, 2018 YSAR-18-0006: Buffer overflow vulnerability in the license management function of YOKOGAWA products
Aug 17, 2018 YSAR-18-0005: Vulnerabilities of debug functions in Vnet/IP network switches
May 21, 2018 YSAR-18-0004: Vulnerability of hardcoded password in STARDOM controllers
April 27, 2018 YSAR-18-0003: Vulnerabilities of remote management functions in Vnet/IP network switches
April 5, 2018 YSAR-18-0002: Vulnerability of remote management access control on computers provided as Yokogawa system components 2
January 22, 2018 YSAR-18-0001: Faked and blocked alarms Vulnerability in CENTUM and Exaopc

 

2017

August 10, 2017 YSAR-17-0001: Vulnerability of remote management access control on computers provided as Yokogawa system components (update : December 22, 2017)

 

2016

September 14, 2016 YSAR-16-0002: Arbitrary command execution vulnerability in STARDOM
March 23, 2016 YSAR-16-0001: Vnet/IP network switches reveal administrator password in SNMP community string (update : December 22, 2017)

 

2015

September 10, 2015 YSAR-15-0003: Vulnerabilities of communication functions in CENTUM and other Yokogawa products (update : December 22, 2017)
July 13, 2015 YSAR-15-0002: SNMPv3 authentication bypass vulnerability in Vnet/IP network switch (update : December 22, 2017)
February 16, 2015 YSAR-15-0001: Buffer overflow vulnerability in YOKOGAWA HART Device DTM (update : December 25, 2017)

 

2014

December 5, 2014 YSAR-14-0005: SSLv3 protocol vulnerability of decrypting the encrypted data in YOKOGAWA products (update : December 22, 2017)
November 28, 2014 YSAR-14-0004: XML External Entity (XXE) processing Vulnerability in FAST/TOOLS (update : December 22, 2017)
September 17, 2014 YSAR-14-0003: Arbitrary File Read/Write Vulnerability in CENTUM series and Exaopc (update : December 22, 2017)
July 7, 2014 YSAR-14-0002: Buffer Overflow Vulnerability in CENTUM systems and Exaopc (update : December 22, 2017)
March 7, 2014 YSAR-14-0001: Vulnerabilities in CENTUM and other Yokogawa products (update : December 22, 2017)

 

About vulnerability handling policy

Related Products & Solutions

Product Security

Yokogawa has established the basic policy and measures criteria for the security control of products. 

×

Have Questions?

Contact a Yokogawa Expert to learn how we can help you solve your challenges.

Top