CVE-2020-16232

low-risk
Published 2022-03-18

In Yokogawa WideField3 R1.01 - R4.03, a buffer overflow could be caused when a user loads a maliciously crafted project file.

Do I need to act?

-
0.22% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
2
CVSS 2.8/10 Low
LOCAL / LOW complexity

Affected Products (1)

Widefield3

Affected Vendors

Yokogawa

References (4)

Mitigation https://www.cisa.gov/uscert/ics/advisories/icsa-20-273-02
Vendor Advisory https://www.yokogawa.com/library/resources/white-papers/yokogawa-security-adviso...
Mitigation https://www.cisa.gov/uscert/ics/advisories/icsa-20-273-02
Vendor Advisory https://www.yokogawa.com/library/resources/white-papers/yokogawa-security-adviso...
17
/ 100
low-risk
Severity 11/34 · Low
Exploitability 1/34 · Minimal
Exposure 5/34 · Minimal