CVE-2019-5909

Name: CVE-2019-5909
Creator: NVD / NIST
Published: 2019-02-13T18:29:00.747+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

UnknownEPSS 5.41%

Last modified Jun 17, 2026

CVE-2019-5909 is a vulnerability of currently unknown severity. License Manager Service of YOKOGAWA products (CENTUM VP (R5.01.00 - R6.06.00), CENTUM VP Entry Class (R5.01.00 - R6.06.00), ProSafe-RS (R3.01.00 - R4.04.00), PRM (R4.01.00 - R4.02.00), B/M9000 VP(R7.01.01 - R8.02.03)) allows remote attackers to bypass access restriction to send malicious files to the PC where License Manager Service runs via unspecified vectors.. EPSS estimates a 5.41% chance of exploitation in the next 30 days.

Description

License Manager Service of YOKOGAWA products (CENTUM VP (R5.01.00 - R6.06.00), CENTUM VP Entry Class (R5.01.00 - R6.06.00), ProSafe-RS (R3.01.00 - R4.04.00), PRM (R4.01.00 - R4.02.00), B/M9000 VP(R7.01.01 - R8.02.03)) allows remote attackers to bypass access restriction to send malicious files to the PC where License Manager Service runs via unspecified vectors.

Metrics

EPSS Probability

5.41%

91.7th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

CWE-287

Affected Software

Vendor	Product	Versions
Yokogawa	B\/M 9000 Vp	>= r7.01.01, <= r8.02.03
Yokogawa	Centum Vp	>= r5.01.00, <= r6.06.00
Yokogawa	Prm	>= r4.01.00, <= r4.02.00
Yokogawa	Prosafe-Rs	>= r3.01.00, <= r4.04.00

References

http://jvn.jp/vu/JVNVU99147082/index.htmlThird Party Advisory
http://www.securityfocus.com/bid/106772Third Party Advisory, VDB Entry
https://web-material3.yokogawa.com/1/20653/files/YSAR-19-0001-E.pdfVendor Advisory
http://jvn.jp/vu/JVNVU99147082/index.htmlThird Party Advisory
http://www.securityfocus.com/bid/106772Third Party Advisory, VDB Entry
https://web-material3.yokogawa.com/1/20653/files/YSAR-19-0001-E.pdfVendor Advisory

Timeline

Published: Feb 13, 2019
Last Modified: Jun 17, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2019-5909?

How severe is CVE-2019-5909?

Severity scoring for CVE-2019-5909 is pending analysis. The EPSS model estimates a 5.41% probability of exploitation in the next 30 days.

How do I fix CVE-2019-5909?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2019-5909?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST