CVE-2020-5608
Last modified
CVE-2020-5608 is a critical-severity vulnerability rated 9.8/10 on the CVSS scale. CAMS for HIS CENTUM CS 3000 (includes CENTUM CS 3000 Small) R3.08.10 to R3.09.50, CENTUM VP (includes CENTUM VP Small, Basic) R4.01.00 to R6.07.00, B/M9000CS R5.04.01 to R5.05.01, and B/M9000 VP R6.01.01 to R8.03.01 allows a remote unauthenticated attacker to bypass authentication and send altered communication packets via unspecified vectors.. EPSS estimates a 1.59% chance of exploitation in the next 30 days.
Description
CAMS for HIS CENTUM CS 3000 (includes CENTUM CS 3000 Small) R3.08.10 to R3.09.50, CENTUM VP (includes CENTUM VP Small, Basic) R4.01.00 to R6.07.00, B/M9000CS R5.04.01 to R5.05.01, and B/M9000 VP R6.01.01 to R8.03.01 allows a remote unauthenticated attacker to bypass authentication and send altered communication packets via unspecified vectors.
Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Yokogawa | Centum Cs 3000 Firmware | >= r3.08.10, <= r3.09.50 |
| Yokogawa | Centum Vp Firmware | >= r4.01.00, <= r4.03.00 |
| Yokogawa | Centum Vp Firmware | >= r5.01.00, <= r5.04.20 |
| Yokogawa | Centum Vp Firmware | >= r6.01.00, <= r6.07.00 |
| Yokogawa | B\/M9000cs Firmware | >= r5.04.01, <= r5.05.01 |
| Yokogawa | B\/M9000vp Firmware | >= r6.01.01, <= r8.03.01 |
References
- https://jvn.jp/vu/JVNVU97997181/index.htmlThird Party Advisory
- https://jvn.jp/vu/JVNVU97997181/index.htmlThird Party Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2020-5608?
How severe is CVE-2020-5608?
How do I fix CVE-2020-5608?
Are you affected by CVE-2020-5608?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST