Vulnerabilities > Yokogawa > Centum VP > r5.04.00

DATE CVE VULNERABILITY TITLE RISK
2023-04-11 CVE-2023-26593 Cleartext Storage of Sensitive Information vulnerability in Yokogawa products
CENTUM series provided by Yokogawa Electric Corporation are vulnerable to cleartext storage of sensitive information.
local
low complexity
yokogawa CWE-312
7.8
2019-02-13 CVE-2019-5909 Improper Authentication vulnerability in Yokogawa products
License Manager Service of YOKOGAWA products (CENTUM VP (R5.01.00 - R6.06.00), CENTUM VP Entry Class (R5.01.00 - R6.06.00), ProSafe-RS (R3.01.00 - R4.04.00), PRM (R4.01.00 - R4.02.00), B/M9000 VP(R7.01.01 - R8.02.03)) allows remote attackers to bypass access restriction to send malicious files to the PC where License Manager Service runs via unspecified vectors.
network
low complexity
yokogawa CWE-287
critical
9.8
2018-04-17 CVE-2018-8838 Unspecified vulnerability in Yokogawa products
A weakness in access controls in CENTUM CS 1000 all versions, CENTUM CS 3000 versions R3.09.50 and earlier, CENTUM CS 3000 Small versions R3.09.50 and earlier, CENTUM VP versions R6.03.10 and earlier, CENTUM VP Small versions R6.03.10 and earlier, CENTUM VP Basic versions R6.03.10 and earlier, Exaopc versions R3.75.00 and earlier, B/M9000 CS all versions, and B/M9000 VP versions R8.01.01 and earlier may allow a local attacker to exploit the message management function of the system.
local
high complexity
yokogawa
6.5