Detections
Analytics
Yokogawa CENTUM Controller FCS Resource Management Errors (CVE-2022-33939)
high Tenable OT Security Plugin ID 500699
Synopsis
The remote OT asset is affected by a vulnerability.Description
CENTUM VP / CS 3000 controller FCS (CP31, CP33, CP345, CP401, and CP451) contains an issue in processing communication packets, which may lead to resource consumption. If this vulnerability is exploited, an attacker may cause a denial of service (DoS) condition in ADL communication by sending a specially crafted packet to the affected product.This plugin only works with Tenable.ot.
Please visit https://www.tenable.com/products/tenable-ot for more information.
Solution
The following text was originally created by the Cybersecurity and Infrastructure Security Agency (CISA). The original can be found at CISA.gov.Yokogawa has listed the following products as vulnerable due to end-of-life status, with no software patch available:
- CENTUM CS 3000
- CENTUM CS 3000 Entry Class
- CENTUM VP (R4.01.00 to R4.03.00)
- CENTUM VP Entry Class (R4.01.00 to R4.03.00)
Yokogawa has provided software patches for the following vulnerable products:
- CENTUM VP (R5.01.00 to R5.04.20)
- CENTUM VP Entry Class (R6.01.00 to R6.03.00)
For more information and details on implementing these mitigations and downloading the latest patch, users should see the Yokogawa advisory.
See Also
https://jvn.jp/vu/JVNVU94343729/index.html
https://web-material3.yokogawa.com/1/33029/files/YSAR-22-0008-E.pdf
https://web-material3.yokogawa.com/19/33029/files/YSAR-22-0008-J.pdf
https://www.cisa.gov/news-events/ics-advisories/icsa-22-228-01
Plugin Details
Severity: High
ID: 500699
Version: 1.7
Type: remote
Family: Tenable.ot
Published: 8/18/2022
Updated: 9/4/2024
Supported Sensors: Tenable OT Security
Risk Information
VPR
Risk Factor: Low
Score: 3.6
CVSS v2
Risk Factor: High
Base Score: 7.8
Temporal Score: 5.8
Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C
CVSS Score Source: CVE-2022-33939
CVSS v3
Risk Factor: High
Base Score: 7.5
Temporal Score: 6.5
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C
Vulnerability Information
CPE: cpe:/o:yokogawa:centum_cs_3000_cp345_firmware:-, cpe:/o:yokogawa:centum_cs_3000_cp33_firmware:-, cpe:/o:yokogawa:centum_vp_3000_cp401_firmware:r5, cpe:/o:yokogawa:centum_cs_3000_cp31_firmware:-, cpe:/o:yokogawa:centum_vp_3000_cp401_firmware:r6, cpe:/o:yokogawa:centum_vp_3000_cp451_firmware:r4, cpe:/o:yokogawa:centum_vp_3000_cp451_firmware:r6, cpe:/o:yokogawa:centum_cs_3000_cp401_firmware:-, cpe:/o:yokogawa:centum_vp_3000_cp401_firmware:r4, cpe:/o:yokogawa:centum_vp_3000_cp451_firmware:r5, cpe:/o:yokogawa:centum_cs_3000_cp451_firmware:-
Required KB Items: Tenable.ot/Yokogawa
Exploit Ease: No known exploits are available
Patch Publication Date: 8/16/2022
Vulnerability Publication Date: 8/16/2022
Reference Information
CVE: CVE-2022-33939
CWE: 400
ICSA: 22-228-01