Vulnerabilities > Yokogawa > Centum VP > Critical

DATE CVE VULNERABILITY TITLE RISK
2022-04-15 CVE-2022-26034 Improper Authentication vulnerability in Yokogawa B/M9000 VP and Centum VP
Improper authentication vulnerability in the communication protocol provided by AD (Automation Design) server of CENTUM VP R6.01.10 to R6.09.00, CENTUM VP Small R6.01.10 to R6.09.00, CENTUM VP Basic R6.01.10 to R6.09.00, and B/M9000 VP R8.01.01 to R8.03.01 allows an attacker to use the functions provided by AD server.
network
low complexity
yokogawa CWE-287
critical
9.1
2019-02-13 CVE-2019-5909 Improper Authentication vulnerability in Yokogawa products
License Manager Service of YOKOGAWA products (CENTUM VP (R5.01.00 - R6.06.00), CENTUM VP Entry Class (R5.01.00 - R6.06.00), ProSafe-RS (R3.01.00 - R4.04.00), PRM (R4.01.00 - R4.02.00), B/M9000 VP(R7.01.01 - R8.02.03)) allows remote attackers to bypass access restriction to send malicious files to the PC where License Manager Service runs via unspecified vectors.
network
low complexity
yokogawa CWE-287
critical
9.8