CVE-2019-5909

License Manager Service of YOKOGAWA products (CENTUM VP (R5.01.00 - R6.06.00), CENTUM VP Entry Class (R5.01.00 - R6.06.00), ProSafe-RS (R3.01.00 - R4.04.00), PRM (R4.01.00 - R4.02.00), B/M9000 VP(R7.01.01 - R8.02.03)) allows remote attackers to bypass access restriction to send malicious files to the PC where License Manager Service runs via unspecified vectors.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:yokogawa:b\/m_9000_vp:*:*:*:*:*:*:*:*
cpe:2.3:a:yokogawa:centum_vp:*:*:*:*:*:*:*:*
cpe:2.3:a:yokogawa:centum_vp:*:*:*:*:basic:*:*:*
cpe:2.3:a:yokogawa:centum_vp:*:*:*:*:small:*:*:*
cpe:2.3:a:yokogawa:prm:*:*:*:*:*:*:*:*
cpe:2.3:a:yokogawa:prosafe-rs:*:*:*:*:*:*:*:*

History

21 Nov 2024, 04:45

Type Values Removed Values Added
References () http://jvn.jp/vu/JVNVU99147082/index.html - Third Party Advisory () http://jvn.jp/vu/JVNVU99147082/index.html - Third Party Advisory
References () http://www.securityfocus.com/bid/106772 - Third Party Advisory, VDB Entry () http://www.securityfocus.com/bid/106772 - Third Party Advisory, VDB Entry
References () https://web-material3.yokogawa.com/1/20653/files/YSAR-19-0001-E.pdf - Vendor Advisory () https://web-material3.yokogawa.com/1/20653/files/YSAR-19-0001-E.pdf - Vendor Advisory

Information

Published : 2019-02-13 18:29

Updated : 2024-11-21 04:45


NVD link : CVE-2019-5909

Mitre link : CVE-2019-5909

CVE.ORG link : CVE-2019-5909


JSON object : View

Products Affected

yokogawa

  • prosafe-rs
  • prm
  • b\/m_9000_vp
  • centum_vp
CWE
CWE-287

Improper Authentication