CVE-2022-33939
Severity Score
7.5
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
CENTUM VP / CS 3000 controller FCS (CP31, CP33, CP345, CP401, and CP451) contains an issue in processing communication packets, which may lead to resource consumption. If this vulnerability is exploited, an attacker may cause a denial of service (DoS) condition in ADL communication by sending a specially crafted packet to the affected product.
El controlador CENTUM VP / CS 3000 FCS (CP31, CP33, CP345, CP401 y CP451) contiene un problema en el procesamiento de paquetes de comunicación, que puede conllevar a un consumo de recursos. Si es aprovechada esta vulnerabilidad, un atacante puede causar una condición de denegación de servicio (DoS) en la comunicación ADL mediante el envío de un paquete especialmente diseñado al producto afectado.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2022-07-08 CVE Reserved
- 2022-08-16 CVE Published
- 2024-08-03 CVE Updated
- 2024-12-17 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
CAPEC
References (3)
| URL | Tag | Source |
|---|---|---|
| https://jvn.jp/vu/JVNVU94343729/index.html | Third Party Advisory |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://web-material3.yokogawa.com/1/33029/files/YSAR-22-0008-E.pdf | 2023-08-08 | |
| https://web-material3.yokogawa.com/19/33029/files/YSAR-22-0008-J.pdf | 2023-08-08 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Yokogawa Search vendor "Yokogawa" | Centum Cs 3000 Cp401 Firmware Search vendor "Yokogawa" for product "Centum Cs 3000 Cp401 Firmware" | - | - |
Affected
| in | Yokogawa Search vendor "Yokogawa" | Centum Cs 3000 Cp401 Search vendor "Yokogawa" for product "Centum Cs 3000 Cp401" | - | - |
Safe
|
| Yokogawa Search vendor "Yokogawa" | Centum Cs 3000 Cp451 Firmware Search vendor "Yokogawa" for product "Centum Cs 3000 Cp451 Firmware" | - | - |
Affected
| in | Yokogawa Search vendor "Yokogawa" | Centum Cs 3000 Cp451 Search vendor "Yokogawa" for product "Centum Cs 3000 Cp451" | - | - |
Safe
|
| Yokogawa Search vendor "Yokogawa" | Centum Cs 3000 Cp33 Firmware Search vendor "Yokogawa" for product "Centum Cs 3000 Cp33 Firmware" | - | - |
Affected
| in | Yokogawa Search vendor "Yokogawa" | Centum Cs 3000 Cp33 Search vendor "Yokogawa" for product "Centum Cs 3000 Cp33" | - | - |
Safe
|
| Yokogawa Search vendor "Yokogawa" | Centum Cs 3000 Cp345 Firmware Search vendor "Yokogawa" for product "Centum Cs 3000 Cp345 Firmware" | - | - |
Affected
| in | Yokogawa Search vendor "Yokogawa" | Centum Cs 3000 Cp345 Search vendor "Yokogawa" for product "Centum Cs 3000 Cp345" | - | - |
Safe
|
| Yokogawa Search vendor "Yokogawa" | Centum Cs 3000 Cp31 Firmware Search vendor "Yokogawa" for product "Centum Cs 3000 Cp31 Firmware" | - | - |
Affected
| in | Yokogawa Search vendor "Yokogawa" | Centum Cs 3000 Cp31 Search vendor "Yokogawa" for product "Centum Cs 3000 Cp31" | - | - |
Safe
|
| Yokogawa Search vendor "Yokogawa" | Centum Vp 3000 Cp401 Firmware Search vendor "Yokogawa" for product "Centum Vp 3000 Cp401 Firmware" | >= r4.01.00 <= r4.03.00 Search vendor "Yokogawa" for product "Centum Vp 3000 Cp401 Firmware" and version " >= r4.01.00 <= r4.03.00" | - |
Affected
| in | Yokogawa Search vendor "Yokogawa" | Centum Vp 3000 Cp401 Search vendor "Yokogawa" for product "Centum Vp 3000 Cp401" | - | - |
Safe
|
| Yokogawa Search vendor "Yokogawa" | Centum Vp 3000 Cp401 Firmware Search vendor "Yokogawa" for product "Centum Vp 3000 Cp401 Firmware" | >= r5.01.00 < r5.04.78 Search vendor "Yokogawa" for product "Centum Vp 3000 Cp401 Firmware" and version " >= r5.01.00 < r5.04.78" | - |
Affected
| in | Yokogawa Search vendor "Yokogawa" | Centum Vp 3000 Cp401 Search vendor "Yokogawa" for product "Centum Vp 3000 Cp401" | - | - |
Safe
|
| Yokogawa Search vendor "Yokogawa" | Centum Vp 3000 Cp401 Firmware Search vendor "Yokogawa" for product "Centum Vp 3000 Cp401 Firmware" | >= r6.01.00 < r6.03.10 Search vendor "Yokogawa" for product "Centum Vp 3000 Cp401 Firmware" and version " >= r6.01.00 < r6.03.10" | - |
Affected
| in | Yokogawa Search vendor "Yokogawa" | Centum Vp 3000 Cp401 Search vendor "Yokogawa" for product "Centum Vp 3000 Cp401" | - | - |
Safe
|
| Yokogawa Search vendor "Yokogawa" | Centum Vp 3000 Cp451 Firmware Search vendor "Yokogawa" for product "Centum Vp 3000 Cp451 Firmware" | >= r4.01.00 <= r4.03.00 Search vendor "Yokogawa" for product "Centum Vp 3000 Cp451 Firmware" and version " >= r4.01.00 <= r4.03.00" | - |
Affected
| in | Yokogawa Search vendor "Yokogawa" | Centum Vp 3000 Cp451 Search vendor "Yokogawa" for product "Centum Vp 3000 Cp451" | - | - |
Safe
|
| Yokogawa Search vendor "Yokogawa" | Centum Vp 3000 Cp451 Firmware Search vendor "Yokogawa" for product "Centum Vp 3000 Cp451 Firmware" | >= r5.01.00 < r5.04.78 Search vendor "Yokogawa" for product "Centum Vp 3000 Cp451 Firmware" and version " >= r5.01.00 < r5.04.78" | - |
Affected
| in | Yokogawa Search vendor "Yokogawa" | Centum Vp 3000 Cp451 Search vendor "Yokogawa" for product "Centum Vp 3000 Cp451" | - | - |
Safe
|
| Yokogawa Search vendor "Yokogawa" | Centum Vp 3000 Cp451 Firmware Search vendor "Yokogawa" for product "Centum Vp 3000 Cp451 Firmware" | >= r6.01.00 < r6.03.10 Search vendor "Yokogawa" for product "Centum Vp 3000 Cp451 Firmware" and version " >= r6.01.00 < r6.03.10" | - |
Affected
| in | Yokogawa Search vendor "Yokogawa" | Centum Vp 3000 Cp451 Search vendor "Yokogawa" for product "Centum Vp 3000 Cp451" | - | - |
Safe
|