CVE-2023-5915 — MEDIUM (5.3)

Q: How severe is CVE-2023-5915?

CVE-2023-5915 has been rated MEDIUM with a CVSS base score of 5.3/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2023-5915?

Check the references section above for vendor advisories and patch information. Affected products include: Yokogawa Stardom Fcj Firmware, Yokogawa Stardom Fcj, Yokogawa Stardom Fcn Firmware, Yokogawa Stardom Fcn.

Vulnerability Description

A vulnerability of Uncontrolled Resource Consumption has been identified in STARDOM provided by Yokogawa Electric Corporation. This vulnerability may allow to a remote attacker to cause a denial-of-service condition to the FCN/FCJ controller by sending a crafted packet. While sending the packet, the maintenance homepage of the controller could not be accessed. Therefore, functions of the maintenance homepage, changing configuration, viewing logs, etc. are not available. But the controller’s operation is not stopped by the condition. The affected products and versions are as follows: STARDOM FCN/FCJ R1.01 to R4.31.

CVSS Score

5.3

MEDIUM

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

NONE

Integrity

NONE

Availability

LOW

Affected Products

Vendor	Product	Versions
Yokogawa	Stardom Fcj Firmware	>= r1.01, <= r4.31
Yokogawa	Stardom Fcj	-
Yokogawa	Stardom Fcn Firmware	>= r1.01, <= r4.31
Yokogawa	Stardom Fcn	-

Related Weaknesses (CWE)

CWE-400

References

https://jvn.jp/vu/JVNVU95177889/index.htmlMitigationThird Party Advisory
https://web-material3.yokogawa.com/1/35463/files/YSAR-23-0003-E.pdfMitigationVendor Advisory
https://www.cisa.gov/news-events/ics-advisories/icsa-23-334-02MitigationThird Party AdvisoryUS Government Resource
https://jvn.jp/vu/JVNVU95177889/index.htmlMitigationThird Party Advisory
https://web-material3.yokogawa.com/1/35463/files/YSAR-23-0003-E.pdfMitigationVendor Advisory
https://www.cisa.gov/news-events/ics-advisories/icsa-23-334-02MitigationThird Party AdvisoryUS Government Resource

FAQ

What is CVE-2023-5915?

CVE-2023-5915 is a vulnerability with a CVSS score of 5.3 (MEDIUM). A vulnerability of Uncontrolled Resource Consumption has been identified in STARDOM provided by Yokogawa Electric Corporation. This vulnerability may allow to a remote attacker to cause a denial-of-se...

How severe is CVE-2023-5915?

CVE-2023-5915 has been rated MEDIUM with a CVSS base score of 5.3/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2023-5915?

Check the references section above for vendor advisories and patch information. Affected products include: Yokogawa Stardom Fcj Firmware, Yokogawa Stardom Fcj, Yokogawa Stardom Fcn Firmware, Yokogawa Stardom Fcn.