CVE-2022-22148 : Security Advisory and Response

A named pipe ACL misconfiguration in certain Yokogawa Electric products may lead to a security vulnerability.

Understanding CVE-2022-22148

This CVE affects versions of Yokogawa Electric Corporation products Centum CS 3000, Centum VP, and Exaopc.

What is CVE-2022-22148?

The 'Root Service' in Yokogawa Electric products creates named pipes with improper ACL configurations, potentially exposing systems to unauthorized access.

The Impact of CVE-2022-22148

The vulnerability could allow attackers to exploit the misconfiguration and gain unauthorized access to affected systems, posing a risk to the confidentiality and integrity of data.

Technical Details of CVE-2022-22148

Vulnerability Description

The issue arises from improperly configured ACLs on named pipes created by the 'Root Service' in the affected Yokogawa Electric products.

Affected Systems and Versions

CENTUM CS 3000: Versions from R3.08.10 to R3.09.00
CENTUM VP: Versions from R4.01.00 to R4.03.00, from R5.01.00 to R5.04.20, and from R6.01.00 to R6.08.00
Exaopc: Versions from R3.72.00 to R3.79.00

Exploitation Mechanism

Attackers could potentially exploit the misconfigured named pipe ACLs to gain unauthorized access to the affected systems and perform malicious activities.

Mitigation and Prevention

Immediate Steps to Take

It is recommended to apply security patches provided by Yokogawa Electric Corporation to address the vulnerability. Additionally, restrict network access and monitor for any unauthorized activities.

Long-Term Security Practices

Implement secure ACL configurations for named pipes and regularly update and patch the affected products to mitigate future vulnerabilities.

Patching and Updates

Ensure timely installation of security updates and patches from Yokogawa Electric Corporation to protect the systems from potential exploits.