Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
omron vulnerabilities and exploits
(subscribe to this query)
3.3
CVSSv3
CVE-2018-17907
When processing project files in Omron CX-Supervisor Versions 3.4.1.0 and prior and tampering with the value of an offset, an attacker can force the application to read a value outside of an array.
Omron Cx-supervisor
NA
CVE-2015-1015
Omron CX-One CX-Programmer prior to 9.6, CJ2M PLC devices prior to 2.1, and CJ2H PLC devices prior to 1.5 use a reversible format for password storage in object files on Compact Flash cards, which makes it easier for local users to obtain sensitive information by reading a file.
Omron Cj2m Plc 2.0
Omron Cx-programmer 9.5
Omron Cj2h Plc 1.4
NA
CVE-2015-0987
Omron CX-One CX-Programmer prior to 9.6, CJ2M PLC devices prior to 2.1, and CJ2H PLC devices prior to 1.5 rely on cleartext password transmission, which allows remote malicious users to obtain sensitive information by sniffing the network during a PLC unlock request.
Omron Cj2h Plc
Omron Cx-programmer
Omron Cj2m Plc
NA
CVE-2015-0988
Omron CX-One CX-Programmer prior to 9.6 uses a reversible format for password storage in project source-code files, which makes it easier for local users to obtain sensitive information by reading a file.
Omron Cx-programmer
NA
CVE-2014-2370
Cross-site scripting (XSS) vulnerability in the web application on Omron NS5, NS8, NS10, NS12, and NS15 HMI terminals 8.1xx up to and including 8.68x allows remote authenticated users to inject arbitrary web script or HTML via crafted data.
Omron Ns Series System Program Firmware 8.1
Omron Ns Series System Program Firmware 8.68
Omron Ns10 Hmi Terminal -
Omron Ns5 Hmi Terminal -
Omron Ns15 Hmi Terminal -
Omron Ns12 Hmi Terminal -
Omron Ns8 Hmi Terminal -
NA
CVE-2014-2369
Cross-site request forgery (CSRF) vulnerability in the web application on Omron NS5, NS8, NS10, NS12, and NS15 HMI terminals 8.1xx up to and including 8.68x allows remote authenticated users to hijack the authentication of unspecified victims via unknown vectors.
Omron Ns Series System Program Firmware 8.68
Omron Ns Series System Program Firmware 8.1
Omron Ns8 Hmi Terminal -
Omron Ns15 Hmi Terminal -
Omron Ns12 Hmi Terminal -
Omron Ns10 Hmi Terminal -
Omron Ns5 Hmi Terminal -
NA
CVE-2013-2301
The OMRON OpenWnn application prior to 1.3.6 for Android uses weak permissions for unspecified files, which allows malicious users to obtain sensitive information via an application that accesses the local filesystem.
Omron Openwnn 1.2
Omron Openwnn 1.1
Omron Openwnn 1.0
Omron Openwnn
Omron Openwnn 1.3.4
Omron Openwnn 1.3.2
Omron Openwnn 1.3
Omron Openwnn 1.3.3
Omron Openwnn 1.3.1
NA
CVE-2011-0517
Stack-based buffer overflow in Sielco Sistemi Winlog Pro 2.07.00 and previous versions, when Run TCP/IP server is enabled, allows remote malicious users to cause a denial of service (crash) and execute arbitrary code via a crafted 0x02 opcode to TCP port 46823.
Sielcosistemi Winlog Pro
2 EDB exploits
NA
CVE-2000-0704
Buffer overflow in SGI Omron WorldView Wnn allows remote malicious users to execute arbitrary commands via long JS_OPEN, JS_MKDIR, or JS_FILE_INFO commands.
Wnn Wnn4 4.2.2tl
Wnn Wnn4 4.2.5tl
Freewnn Freewnn 1.0
Freewnn Freewnn 1.1
Wnn Wnn4 4.2.8
Freewnn Freewnn 1.1.1 Axxx
Omron Worldview 6.5
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32976
CVE-2024-33557
CVE-2024-36801
CVE-2024-35654
authentication bypass
CVE-2024-24919
CSRF
code execution
CVE-2024-27348
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9