Remote Code Execution via License Manager Service in YOKOGAWA Products

Remote Code Execution via License Manager Service in YOKOGAWA Products

CVE-2019-5909 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

License Manager Service of YOKOGAWA products (CENTUM VP (R5.01.00 - R6.06.00), CENTUM VP Entry Class (R5.01.00 - R6.06.00), ProSafe-RS (R3.01.00 - R4.04.00), PRM (R4.01.00 - R4.02.00), B/M9000 VP(R7.01.01 - R8.02.03)) allows remote attackers to bypass access restriction to send malicious files to the PC where License Manager Service runs via unspecified vectors.

Learn more about our Web Application Penetration Testing UK.