Yokogawa STARDOM Authentication Bypass Vulnerability

CVSS 7.3 HIGH

CVEs (1)

CVE-2016-4860

Yokogawa has remediated the vulnerability with the latest release R4.02. The following link leads to Yokogawa’s STARDOM web site: (http://stardom.biz)
Yokogawa strongly suggests all users to introduce appropriate security measures not only for the vulnerabilities identified but also to the overall systems.
Yokogawa’s Security Advisory Report, “YSAR-16-0002: Arbitrary command execution vulnerability in STARDOM,” and other Yokogawa products are available at the following URL: (http://www.yokogawa.com/technical-library/resources/white-papers/yokogawa-security-advisory-report-list/)

Yokogawa

Yokogawa · STARDOM FCN/FCJ controller >=R1.01|<R4.01

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.