CVE-2022-29519 — HIGH (7.5)

Q: How severe is CVE-2022-29519?

CVE-2022-29519 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2022-29519?

Check the references section above for vendor advisories and patch information. Affected products include: Yokogawa Stardom Fcj Firmware, Yokogawa Stardom Fcj, Yokogawa Stardom Fcn Firmware, Yokogawa Stardom Fcn.

Vulnerability Description

Cleartext transmission of sensitive information vulnerability exists in STARDOM FCN Controller and FCJ Controller R1.01 to R4.31, which may allow an adjacent attacker to login the affected products and alter device configuration settings or tamper with device firmware.

CVSS Score

7.5

HIGH

CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector

ADJACENT_NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Yokogawa	Stardom Fcj Firmware	>= r1.01, <= r4.31
Yokogawa	Stardom Fcj	-
Yokogawa	Stardom Fcn Firmware	>= r1.01, <= r4.31
Yokogawa	Stardom Fcn	-

Related Weaknesses (CWE)

CWE-319

References

https://jvn.jp/vu/JVNVU95452299/index.htmlMitigationThird Party AdvisoryVDB Entry
https://web-material3.yokogawa.com/1/32885/files/YSAR-22-0007-E.pdfMitigationVendor Advisory
https://web-material3.yokogawa.com/19/32885/files/YSAR-22-0007-J.pdfMitigationVendor Advisory
https://www.cisa.gov/uscert/ics/advisories/icsa-22-174-01MitigationThird Party AdvisoryUS Government Resource
https://jvn.jp/vu/JVNVU95452299/index.htmlMitigationThird Party AdvisoryVDB Entry
https://web-material3.yokogawa.com/1/32885/files/YSAR-22-0007-E.pdfMitigationVendor Advisory
https://web-material3.yokogawa.com/19/32885/files/YSAR-22-0007-J.pdfMitigationVendor Advisory
https://www.cisa.gov/uscert/ics/advisories/icsa-22-174-01MitigationThird Party AdvisoryUS Government Resource

FAQ

What is CVE-2022-29519?

CVE-2022-29519 is a vulnerability with a CVSS score of 7.5 (HIGH). Cleartext transmission of sensitive information vulnerability exists in STARDOM FCN Controller and FCJ Controller R1.01 to R4.31, which may allow an adjacent attacker to login the affected products an...

How severe is CVE-2022-29519?

CVE-2022-29519 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2022-29519?

Check the references section above for vendor advisories and patch information. Affected products include: Yokogawa Stardom Fcj Firmware, Yokogawa Stardom Fcj, Yokogawa Stardom Fcn Firmware, Yokogawa Stardom Fcn.