CVE-2023-5915
MEDIUMYokogawa STARDOM FCN/FCJ R1.01-R4.31 - Denial of Service via Crafted Packet
Title source: llmDescription
A vulnerability of Uncontrolled Resource Consumption has been identified in STARDOM provided by Yokogawa Electric Corporation. This vulnerability may allow to a remote attacker to cause a denial-of-service condition to the FCN/FCJ controller by sending a crafted packet. While sending the packet, the maintenance homepage of the controller could not be accessed. Therefore, functions of the maintenance homepage, changing configuration, viewing logs, etc. are not available. But the controller’s operation is not stopped by the condition. The affected products and versions are as follows: STARDOM FCN/FCJ R1.01 to R4.31.
References (3)
Core 3
Core References
Mitigation, Third Party Advisory
https://jvn.jp/vu/JVNVU95177889/index.html
Mitigation, Vendor Advisory
https://web-material3.yokogawa.com/1/35463/files/YSAR-23-0003-E.pdf
Mitigation, Third Party Advisory, US Government Resource
https://www.cisa.gov/news-events/ics-advisories/icsa-23-334-02
Scores
CVSS v3
5.3
EPSS
0.0117
EPSS Percentile
63.2%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Details
CWE
CWE-400
Status
published
Products (2)
yokogawa/stardom_fcj_firmware
r1.01 - r4.31
yokogawa/stardom_fcn_firmware
r1.01 - r4.31
Published
Dec 01, 2023
Tracked Since
Feb 18, 2026