Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
omron vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2019-18269
Omron’s CS and CJ series PLCs have an unrestricted externally accessible lock vulnerability.
Omron Plc Cs Firmware
Omron Plc Cj Firmware
8.1
CVSSv3
CVE-2019-13533
In Omron PLC CJ series, all versions, and Omron PLC CS series, all versions, an attacker could monitor traffic between the PLC and the controller and replay requests that could result in the opening and closing of industrial valves.
Omron Plc Cj Firmware
Omron Plc Cs Firmware
6.5
CVSSv3
CVE-2021-20836
Out-of-bounds read vulnerability in CX-Supervisor v4.0.0.13 and v4.0.0.16 allows an attacker with administrative privileges to cause information disclosure and/or arbitrary code execution by opening a specially crafted SCS project files.
Omron Cx-supervisor 4.0.0.13
Omron Cx-supervisor 4.0.0.16
9.8
CVSSv3
CVE-2018-6624
OMRON NS devices 1.1 up to and including 1.3 allow remote malicious users to bypass authentication via a direct request to the .html file for a specific screen, as demonstrated by monitor.html.
Omron Ns Series Firmware
7.8
CVSSv3
CVE-2022-25325
Use after free vulnerability in CX-Programmer v9.76.1 and previous versions which is a part of CX-One (v4.60) suite allows an malicious user to cause information disclosure and/or arbitrary code execution by having a user to open a specially crafted CXP file. This vulnerability i...
Omron Cx-programmer
7.8
CVSSv3
CVE-2022-2979
Opening a specially crafted file could cause the affected product to fail to release its memory reference potentially resulting in arbitrary code execution.
Omron Cx-programmer
7.8
CVSSv3
CVE-2023-22314
Use after free vulnerability exists in CX-Programmer Ver.9.79 and previous versions. By having a user open a specially crafted CXP file, information disclosure and/or arbitrary code execution may occur. This vulnerability is different from CVE-2023-22277 and CVE-2023-22317.
Omron Cx-programmer
7.8
CVSSv3
CVE-2023-22317
Use after free vulnerability exists in CX-Programmer Ver.9.79 and previous versions. By having a user open a specially crafted CXP file, information disclosure and/or arbitrary code execution may occur. This vulnerability is different from CVE-2023-22277 and CVE-2023-22314.
Omron Cx-programmer
7.8
CVSSv3
CVE-2022-21124
Out-of-bounds write vulnerability in CX-Programmer v9.76.1 and previous versions which is a part of CX-One (v4.60) suite allows an malicious user to cause information disclosure and/or arbitrary code execution by having a user to open a specially crafted CXP file. This vulnerabil...
Omron Cx-programmer
7.8
CVSSv3
CVE-2022-21137
Omron CX-One Versions 4.60 and prior are vulnerable to a stack-based buffer overflow while processing specific project files, which may allow an malicious user to execute arbitrary code.
Omron Cx-one
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »