Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
omron vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2019-18269
Omron’s CS and CJ series PLCs have an unrestricted externally accessible lock vulnerability.
Omron Plc Cs Firmware
Omron Plc Cj Firmware
6.8
CVSSv2
CVE-2019-13533
In Omron PLC CJ series, all versions, and Omron PLC CS series, all versions, an attacker could monitor traffic between the PLC and the controller and replay requests that could result in the opening and closing of industrial valves.
Omron Plc Cj Firmware
Omron Plc Cs Firmware
6
CVSSv2
CVE-2021-20836
Out-of-bounds read vulnerability in CX-Supervisor v4.0.0.13 and v4.0.0.16 allows an attacker with administrative privileges to cause information disclosure and/or arbitrary code execution by opening a specially crafted SCS project files.
Omron Cx-supervisor 4.0.0.13
Omron Cx-supervisor 4.0.0.16
7.5
CVSSv2
CVE-2018-6624
OMRON NS devices 1.1 up to and including 1.3 allow remote malicious users to bypass authentication via a direct request to the .html file for a specific screen, as demonstrated by monitor.html.
Omron Ns Series Firmware
2.1
CVSSv2
CVE-2015-0988
Omron CX-One CX-Programmer prior to 9.6 uses a reversible format for password storage in project source-code files, which makes it easier for local users to obtain sensitive information by reading a file.
Omron Cx-programmer
6.8
CVSSv2
CVE-2022-25230
Use after free vulnerability in CX-Programmer v9.76.1 and previous versions which is a part of CX-One (v4.60) suite allows an malicious user to cause information disclosure and/or arbitrary code execution by having a user to open a specially crafted CXP file. This vulnerability i...
Omron Cx-programmer
6.8
CVSSv2
CVE-2018-17905
When processing project files in Omron CX-Supervisor Versions 3.4.1.0 and prior and tampering with a specific byte, memory corruption may occur within a specific object.
Omron Cx-supervisor
4.3
CVSSv2
CVE-2018-17907
When processing project files in Omron CX-Supervisor Versions 3.4.1.0 and prior and tampering with the value of an offset, an attacker can force the application to read a value outside of an array.
Omron Cx-supervisor
6.8
CVSSv2
CVE-2018-17909
When processing project files in Omron CX-Supervisor Versions 3.4.1.0 and prior, the application fails to check if it is referencing freed memory, which may allow an malicious user to execute code under the context of the application.
Omron Cx-supervisor
6.8
CVSSv2
CVE-2018-17913
A type confusion vulnerability exists when processing project files in Omron CX-Supervisor Versions 3.4.1.0 and prior, which may allow an malicious user to execute code in the context of the application.
Omron Cx-supervisor
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »