Yokogawa Products

Risk Summary

Successful exploitation of this vulnerability could allow a local attacker to execute malicious files.

CVEs (1)

Remediations

• Exaopc: R1.01.00 - R3.77.00: Update to the latest revision (R3.78.00)
• Exaplog: R1.10.00 - R3.30.00: Update to the latest revision (R3.40.00) and apply patch software for R3.40.06
• Exaplog: R3.40.00: Apply patch software for R3.40.06
• Exaquantum: R1.10.00 - R3.02.00: Update to the latest revision (R3.15.00)
• Exaquantum/Batch: R1.01.00 - R2.50.40: Update to the latest revision (R3.10.00
• Exasmoc: Support will end for all revisions of Exasmoc on Sep 30, 2019. Consider migrating to Platform for Advanced Control and Estimation which is the successor to Exasmoc
• Exarqe: Support will end for all revisions of Exarqe on Sep 30, 2019. Consider migrating to Platform for Advanced Control and Estimation which is the successor to Exarqe
• GA10 R1.01.01 - R3.05.01: Update to the latest revision (R3.05.06)
• InsightSuiteAE R1.01.00 - R1.06.00: Update to the latest revision (R1.07.00)
• Yokogawa states patching is the best protection against this vulnerability. If it is not possible to patch, please consult with specialists at Yokogawa on the next best course of action.
• Yokogawa recommends all users have a security program consisting of patch updates, anti-virus, backup and recovery, zoning, hardening, whitelisting, firewall, etc. Yokogawa can assist in setting up the security program and can perform security risk
• For more information about this vulnerability and the associated mitigations, please see Yokogawa's security advisory report YSAR-19-0003.

Affected Vendors

Affected Products (8)

Affected Sectors

Critical Manufacturing, Energy, Food and Agriculture