Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
omron vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2021-20836
Out-of-bounds read vulnerability in CX-Supervisor v4.0.0.13 and v4.0.0.16 allows an attacker with administrative privileges to cause information disclosure and/or arbitrary code execution by opening a specially crafted SCS project files.
Omron Cx-supervisor 4.0.0.13
Omron Cx-supervisor 4.0.0.16
8.1
CVSSv3
CVE-2019-13533
In Omron PLC CJ series, all versions, and Omron PLC CS series, all versions, an attacker could monitor traffic between the PLC and the controller and replay requests that could result in the opening and closing of industrial valves.
Omron Plc Cj Firmware
Omron Plc Cs Firmware
9.8
CVSSv3
CVE-2019-18269
Omron’s CS and CJ series PLCs have an unrestricted externally accessible lock vulnerability.
Omron Plc Cs Firmware
Omron Plc Cj Firmware
9.8
CVSSv3
CVE-2018-6624
OMRON NS devices 1.1 up to and including 1.3 allow remote malicious users to bypass authentication via a direct request to the .html file for a specific screen, as demonstrated by monitor.html.
Omron Ns Series Firmware
NA
CVE-2015-0988
Omron CX-One CX-Programmer prior to 9.6 uses a reversible format for password storage in project source-code files, which makes it easier for local users to obtain sensitive information by reading a file.
Omron Cx-programmer
7.8
CVSSv3
CVE-2022-21219
Out-of-bounds read vulnerability in CX-Programmer v9.76.1 and previous versions which is a part of CX-One (v4.60) suite allows an malicious user to cause information disclosure and/or arbitrary code execution by having a user to open a specially crafted CXP file.
Omron Cx-programmer
5.3
CVSSv3
CVE-2018-7519
In Omron CX-Supervisor Versions 3.30 and prior, parsing malformed project files may cause a heap-based buffer overflow.
Omron Cx-supervisor
5.3
CVSSv3
CVE-2018-7521
In Omron CX-Supervisor Versions 3.30 and prior, use after free vulnerabilities can be exploited when CX Supervisor parses a specially crafted project file.
Omron Cx-supervisor
5.3
CVSSv3
CVE-2018-7525
In Omron CX-Supervisor Versions 3.30 and prior, processing a malformed packet by a certain executable may cause an untrusted pointer dereference vulnerability.
Omron Cx-supervisor
9.8
CVSSv3
CVE-2022-3396
OMRON CX-Programmer 9.78 and prior is vulnerable to an Out-of-Bounds Write, which may allow an malicious user to execute arbitrary code.
Omron Cx-programmer
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
man-in-the-middle
command injection
CVE-2021-47511
CVE-2024-26238
CVE-2024-4858
CVE-2024-21305
XXE
CVE-2021-47555
CVE-2021-47526
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »