CVE-2026-36401: Yokogawa CENTUM VP

CVSSawaiting NVD

ExploitationNo exploitation reported

Triage statusUnder Review

ActionSchedule for next cycle

Affected product

Yokogawa CENTUM VP

Remediation Steps

Review Yokogawa CENTUM VP versions in use against affected versions list
Apply security update from Yokogawa for privilege escalation and PROG user access
Change default and shared credentials for PROG and admin accounts immediately
Audit permission modifications and user access logs for unauthorized changes
Test patches in staging environment before production deployment

References

https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2026/icsa-26-092-02.json
https://www.yokogawa.com/solutions/products-platforms/control-systems/centum-vp/
https://nvd.nist.gov/vuln/detail/CVE-2026-36401

Coverage on defend.network

Vulnerability Priority Report – Week 2 of April 2026 (April 13 – 19)

🤖 This CVE page is generated by defend.network from NVD, CISA KEV, EPSS, and our verified daily briefings. Severity and exploitation data come from official sources; always verify remediation steps against the official vendor advisory before acting in production.

Affected product

Remediation Steps

References

Coverage on defend.network

Get Critical CVE Alerts