#VU13118 Use of hard-coded credentials in Yokogawa Server applications
Vulnerability identifier: #VU13118
Vulnerability risk: High
CVSSv3.1: 8.7 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C]
CVE-ID:
CWE-ID:
CWE-798
Exploitation vector: Network
Exploit availability: No
Vulnerable software:
STARDOM FCN-500
Server applications /
SCADA systems
STARDOM FCN-RTU
Server applications /
SCADA systems
STARDOM FCN-100
Server applications /
SCADA systems
STARDOM FCJ
Server applications /
SCADA systems
Vendor: Yokogawa
Description
The vulnerability allows a remote attacker to gain elevated privieleges on the target system.
The vulnerability exists due to use of hard-coded credentials. A remote unauthenticated attacker can use these credentials to gain elevated privileges and execute arbitrary code.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
Mitigation
Update to version 4.10.
Vulnerable software versions
STARDOM FCN-500: All versions
STARDOM FCN-RTU: All versions
STARDOM FCN-100: All versions
STARDOM FCJ: All versions
External links
http://ics-cert.us-cert.gov/advisories/ICSA-18-151-03
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
