VDB
CVE-2022-27188
CVE-2022-27188
PUBLISHED
CVSS 7.800000190734863 HIGH
OS command injection vulnerability exists in CENTUM VP R4.01.00 to R4.03.00, CENTUM VP Small R4.01.00 to R4.03.00, CENTUM VP Basic R4.01.00 to R4.03.00, and B/M9000 VP R6.01.01 to R6.03.02, which may allow an attacker who can access the computer where the affected product is installed to execute an arbitrary OS command by altering a file generated using Graphic Builder.
EPSS 0.40% · 61.0th percentile
Risk Scores
CVSS 3.1
7.800000190734863
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score
0.40%
61.0th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Yokogawa Electric Corporation | CENTUM VP series with VP6E5150(Graphic Builder) installed and B/M9000 VP | CENTUM VP R4.01.00 to R4.03.00, CENTUM VP Small R4.01.00 to R4.03.00, CENTUM VP Basic R4.01.00 to R4.03.00, and B/M9000 VP R6.01.01 to R6.03.02 |
| yokogawa | centum_vp | *, r4.01.00, * |
| yokogawa | b\/m9000_vp | * |
Exploit Intelligence
Timeline
- Apr 15, 2022 CVE Published
- Apr 15, 2022 EPSS Score
- Jun 4, 2022 EPSS Score
- Jul 25, 2022 EPSS Score
- Sep 14, 2022 EPSS Score
- Nov 3, 2022 EPSS Score
- Dec 23, 2022 EPSS Score
- Feb 11, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 2, 2023 EPSS Score
- May 22, 2023 EPSS Score
- Jul 12, 2023 EPSS Score