This plugin disables scanning localhost for Tenable.OT scans. Only a limited number of plugins that do not require scan targets are allowed to be executed.

  This plugin only works with Tenable.ot.
  Please visit https://www.tenable.com/products/tenable-ot for more information.

A vulnerability has been identified in SICAM A8000 CP-8031 (All versions < V4.80), SICAM A8000 CP-8050 (All versions < V4.80). Affected devices do not require an user to be authenticated to access certain files. This could allow unauthenticated attackers to download these files.

  - A vulnerability has been identified in SICAM A8000 CP-8031 (All versions < V4.80), SICAM A8000 CP-8050     (All versions < V4.80). Affected devices do not require an user to be authenticated to access certain     files. This could allow unauthenticated attackers to download these files. (CVE-2022-27480)

This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information.

The following Yokogawa Electric products do not change the passwords of the internal Windows accounts from the initial configuration: CENTUM VP versions from R5.01.00 to R5.04.20 and versions from R6.01.00 to R6.08.0, Exaopc versions from R3.72.00 to R3.79.00.   This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information.

  - The following Yokogawa Electric products do not change the passwords of the internal Windows accounts from     the initial configuration: CENTUM VP versions from R5.01.00 to R5.04.20 and versions from R6.01.00 to     R6.08.0, Exaopc versions from R3.72.00 to R3.79.00. (CVE-2022-21194)

The following Yokogawa Electric products hard-code the password for CAMS server applications: CENTUM VP versions from R5.01.00 to R5.04.20 and versions from R6.01.00 to R6.08.00, Exaopc versions from R3.72.00 to R3.79.00   This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information.

  - The following Yokogawa Electric products hard-code the password for CAMS server applications: CENTUM VP     versions from R5.01.00 to R5.04.20 and versions from R6.01.00 to R6.08.00, Exaopc versions from R3.72.00     to R3.79.00 (CVE-2022-23402)

A local, authenticated attacker could use an XML External Entity (XXE) attack to exploit weakly configured XML files to access local or remote content. A successful exploit could potentially cause a denial-of-service condition and allow the attacker to arbitrarily read any local file via system-level services.   This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information.

  - A local, authenticated attacker could use an XML External Entity (XXE) attack to exploit weakly configured     XML files to access local or remote content. A successful exploit could potentially cause a denial-of-     service condition and allow the attacker to arbitrarily read any local file via system-level services.
    (CVE-2020-14478)

'Root Service' service implemented in the following Yokogawa Electric products creates some named pipe with improper ACL configuration. CENTUM CS 3000 versions from R3.08.10 to R3.09.00, CENTUM VP versions from R4.01.00 to R4.03.00, from R5.01.00 to R5.04.20, and from R6.01.00 to R6.08.00, Exaopc versions from R3.72.00 to R3.79.00.   This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information.

  - 'Root Service' service implemented in the following Yokogawa Electric products creates some named pipe     with improper ACL configuration. CENTUM CS 3000 versions from R3.08.10 to R3.09.00, CENTUM VP versions     from R4.01.00 to R4.03.00, from R5.01.00 to R5.04.20, and from R6.01.00 to R6.08.00, Exaopc versions from     R3.72.00 to R3.79.00. (CVE-2022-22148)

'Long-term Data Archive Package' service implemented in the following Yokogawa Electric products creates some named pipe with imporper ACL configuration. CENTUM CS 3000 versions from R3.08.10 to R3.09.00, CENTUM VP versions from R4.01.00 to R4.03.00, from R5.01.00 to R5.04.20, and from R6.01.00 to R6.08.00, Exaopc versions from R3.72.00 to R3.79.00.   This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information.

  - 'Long-term Data Archive Package' service implemented in the following Yokogawa Electric products creates     some named pipe with imporper ACL configuration. CENTUM CS 3000 versions from R3.08.10 to R3.09.00, CENTUM     VP versions from R4.01.00 to R4.03.00, from R5.01.00 to R5.04.20, and from R6.01.00 to R6.08.00, Exaopc     versions from R3.72.00 to R3.79.00. (CVE-2022-22141)

CAMS for HIS Log Server contained in the following Yokogawa Electric products is vulnerable to uncontrolled resource consumption. CENTUM CS 3000 versions from R3.08.10 to R3.09.00, CENTUM VP versions from R4.01.00 to R4.03.00, from R5.01.00 to R5.04.20, from R6.01.00 to R6.08.00, Exaopc versions from R3.72.00 to R3.79.00.   This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information.

  - CAMS for HIS Log Server contained in the following Yokogawa Electric products is vulnerable to     uncontrolled resource consumption. CENTUM CS 3000 versions from R3.08.10 to R3.09.00, CENTUM VP versions     from R4.01.00 to R4.03.00, from R5.01.00 to R5.04.20, from R6.01.00 to R6.08.00, Exaopc versions from     R3.72.00 to R3.79.00. (CVE-2022-22145)

CAMS for HIS Server contained in the following Yokogawa Electric products improperly authenticate the receiving packets.
The authentication may be bypassed via some crafted packets: CENTUM CS 3000 versions from R3.08.10 to R3.09.00, CENTUM VP versions from R4.01.00 to R4.03.00, from R5.01.00 to R5.04.20, and from R6.01.00 to R6.08.00, and Exaopc versions from R3.72.00 to R3.79.00.   This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information.

  - CAMS for HIS Server contained in the following Yokogawa Electric products improperly authenticate the     receiving packets. The authentication may be bypassed via some crafted packets: CENTUM CS 3000 versions     from R3.08.10 to R3.09.00, CENTUM VP versions from R4.01.00 to R4.03.00, from R5.01.00 to R5.04.20, and     from R6.01.00 to R6.08.00, and Exaopc versions from R3.72.00 to R3.79.00. (CVE-2022-22729)

The following Yokogawa Electric products contain insecure DLL loading issues. CENTUM CS 3000 versions from R3.08.10 to R3.09.00, CENTUM VP versions from R4.01.00 to R4.03.00, from R5.01.00 to R5.04.20, and from R6.01.00 to R6.08.00, Exaopc versions from R3.72.00 to R3.79.00.   This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information.

  - The following Yokogawa Electric products contain insecure DLL loading issues. CENTUM CS 3000 versions from     R3.08.10 to R3.09.00, CENTUM VP versions from R4.01.00 to R4.03.00, from R5.01.00 to R5.04.20, and from     R6.01.00 to R6.08.00, Exaopc versions from R3.72.00 to R3.79.00. (CVE-2022-23401)

CAMS for HIS Log Server contained in the following Yokogawa Electric products fails to properly neutralize log outputs:
CENTUM CS 3000 versions from R3.08.10 to R3.09.00, CENTUM VP versions from R4.01.00 to R4.03.00, from R5.01.00 to R5.04.20, and from R6.01.00 to R6.08.00, and Exaopc versions from R3.72.00 to R3.79.00.   This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information.

  - CAMS for HIS Log Server contained in the following Yokogawa Electric products fails to properly neutralize     log outputs: CENTUM CS 3000 versions from R3.08.10 to R3.09.00, CENTUM VP versions from R4.01.00 to     R4.03.00, from R5.01.00 to R5.04.20, and from R6.01.00 to R6.08.00, and Exaopc versions from R3.72.00 to     R3.79.00. (CVE-2022-22151)

There is a path traversal vulnerability in CAMS for HIS Log Server contained in the following Yokogawa Electric products: CENTUM CS 3000 versions from R3.08.10 to R3.09.00, CENTUM VP versions from R4.01.00 to R4.03.00, from R5.01.00 to R5.04.20, andfrom R6.01.00 to R6.08.00, Exaopc versions from R3.72.00 to R3.79.00.   This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information.

  - There is a path traversal vulnerability in CAMS for HIS Log Server contained in the following Yokogawa     Electric products: CENTUM CS 3000 versions from R3.08.10 to R3.09.00, CENTUM VP versions from R4.01.00 to     R4.03.00, from R5.01.00 to R5.04.20, andfrom R6.01.00 to R6.08.00, Exaopc versions from R3.72.00 to     R3.79.00. (CVE-2022-21177)

Path traversal vulnerability exists in CAMS for HIS Server contained in the following Yokogawa Electric products: CENTUM CS 3000 versions from R3.08.10 to R3.09.00, CENTUM VP versions from R4.01.00 to R4.03.00, from R5.01.00 to R5.04.20, and from R6.01.00 to R6.08.00, Exaopc versions from R3.72.00 to R3.79.00.   This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information.

  - Path traversal vulnerability exists in CAMS for HIS Server contained in the following Yokogawa Electric     products: CENTUM CS 3000 versions from R3.08.10 to R3.09.00, CENTUM VP versions from R4.01.00 to R4.03.00,     from R5.01.00 to R5.04.20, and from R6.01.00 to R6.08.00, Exaopc versions from R3.72.00 to R3.79.00.
    (CVE-2022-21808)

A Resource Exhaustion issue was discovered in Rockwell Automation ControlLogix 5580 controllers V28.011, V28.012, and V28.013; ControlLogix 5580 controllers V29.011; CompactLogix 5380 controllers V28.011; and CompactLogix 5380 controllers V29.011. This vulnerability may allow an attacker to cause a denial of service condition by sending a series of specific CIP-based commands to the controller.  

This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information.

A CWE-20: Improper Input Validation vulnerability exists that could cause a Denial of Service when a crafted packet is sent to the controller over network port 1105/TCP. Affected Product: Modicon M218 Logic Controller (V5.1.0.6 and prior) This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information.

  - A CWE-20: Improper Input Validation vulnerability exists that could cause a Denial of Service when a     crafted packet is sent to the controller over network port 1105/TCP. Affected Product: Modicon M218 Logic     Controller (V5.1.0.6 and prior) (CVE-2021-22800)

Integrates Tenable.ot into Nessus via the API.

This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information.

ID	Name	Product	Family	Updated	Severity
500624	Do not scan localhost for Tenable.OT scans.	Tenable.ot	Tenable.ot	5/24/2022	info
500629	Siemens (CVE-2022-27480)	Tenable.ot	Tenable.ot	5/3/2022	high
500628	Yokogawa (CVE-2022-21194)	Tenable.ot	Tenable.ot	5/3/2022	critical
500625	Yokogawa (CVE-2022-23402)	Tenable.ot	Tenable.ot	4/4/2022	critical
500621	Rockwell (CVE-2020-14478)	Tenable.ot	Tenable.ot	3/28/2022	high
500613	Yokogawa (CVE-2022-22148)	Tenable.ot	Tenable.ot	3/22/2022	high
500612	Yokogawa (CVE-2022-22141)	Tenable.ot	Tenable.ot	3/22/2022	high
500611	Yokogawa (CVE-2022-22145)	Tenable.ot	Tenable.ot	3/22/2022	high
500610	Yokogawa (CVE-2022-22729)	Tenable.ot	Tenable.ot	3/22/2022	high
500609	Yokogawa (CVE-2022-23401)	Tenable.ot	Tenable.ot	3/22/2022	high
500608	Yokogawa (CVE-2022-22151)	Tenable.ot	Tenable.ot	3/22/2022	high
500607	Yokogawa (CVE-2022-21177)	Tenable.ot	Tenable.ot	3/22/2022	high
500606	Yokogawa (CVE-2022-21808)	Tenable.ot	Tenable.ot	3/22/2022	high
500235	Rockwell (CVE-2017-6024)	Tenable.ot	Tenable.ot	3/22/2022	medium
500604	Schneider (CVE-2021-22800)	Tenable.ot	Tenable.ot	2/22/2022	high
500000	Tenable.ot Asset Information	Tenable.ot	Tenable.ot	2/17/2022	info

Recently Updated Plugins

info

high

critical

critical

high

high

high

high

high

high

high

high

high

medium

high

info