Description
Yokogawa STARDOM Controllers FCJ,FCN-100, FCN-RTU, FCN-500, All versions R4.10 and prior, The controller application fails to prevent memory exhaustion by unauthorized requests. This could allow an attacker to cause the controller to become unstable.
References (2)
Core 2
Core References
Vendor Advisory x_refsource_confirm
https://web-material3.yokogawa.com/YSAR-18-0007-E.pdf
Third Party Advisory, US Government Resource x_refsource_misc
https://ics-cert.us-cert.gov/advisories/ICSA-18-151-03
Scores
CVSS v3
7.5
EPSS
0.0125
EPSS Percentile
65.7%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Details
CWE
CWE-400
Status
published
Products (4)
yokogawa/fcj_firmware
< r4.10
yokogawa/fcn-100_firmware
< r4.10
yokogawa/fcn-500_firmware
< r4.10
yokogawa/fcn-rtu_firmware
< r4.10
Published
Oct 12, 2018
Tracked Since
Feb 18, 2026