Yokogawa CENTUM Hardcoded Password Vulnerability Allowing Unauthorized Access as PROG User

A hardcoded password vulnerability has been identified in Yokogawa CENTUM products, specifically in the CENTUM VP series versions R5.01.00 to R5.04.20, R6.01.00 to R6.12.00, and R7.01.00. This vulnerability allows an attacker to log in as the PROG user, who is assigned default permissions equivalent to OFFUSER. While the risk of performing critical operations or configuration changes is low under normal circumstances, it increases if the PROG user's permissions have been altered. Exploitation requires access to the HIS screen controls and the HIS must be configured in CTM authentication mode.

Impact

Successful exploitation allows an attacker to log in as the PROG user, potentially leading to unauthorized actions or changes, especially if the user's permissions have been modified.

Remediation

For CENTUM VP versions R5.01.00 to R5.04.20, users should change the authentication mode to Windows Authentication, which requires engineering work. For CENTUM VP versions R6.01.00 to R6.12.00 and R7.01.00, users should apply the patch to version R7.01.10.