Risk Summary
Successful exploitation of this vulnerability could allow an attacker to execute arbitrary programs.
CVEs (1)
Remediations
- Yokogawa recommends that customers update to CENTUM VP or CENTUM VP Entry Class R6.11.12 or later. CENTUM CS and earlier versions of Centum VP will not be patched because these products are no longer supported.
- Yokogawa strongly recommends all customers to establish and maintain a full security program, not just for the vulnerability identified in this advisory. Security program components are: Patch updates, Anti-virus, Backup and recovery, zoning, hardening, whitelisting, firewall, etc. Yokogawa can assist in setting up and running a security program continuously. Yokogawa can perform a security risk assessment for users considering the most effective risk mitigation plan.
- For questions related to this report, please contact Yokogawa
- For more information and details on implementing these mitigations and downloading the latest patch, users should see Yokogawa advisory YSAR-24-0002.
Affected Vendors
Yokogawa
Affected Products (4)
Yokogawa
·
CENTUM CS 3000 (Including CENTUM CS 3000 Entry Class)
>=R3.08.10|<=R3.09.50
Yokogawa
·
CENTUM VP (Including CENTUM VP Entry Class)
>=R4.01.00|<=R4.03.00
Yokogawa
·
CENTUM VP (Including CENTUM VP Entry Class)
>=R5.01.00|<=R5.04.20
Yokogawa
·
CENTUM VP (Including CENTUM VP Entry Class)
>=R6.01.00|<=R6.11.10
Affected Sectors
Critical Manufacturing, Energy, Food and Agriculture
Get alerted to advisories like this
OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.
Start free trial Learn more