Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
omron vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2018-18989
In CX-One Versions 4.42 and prior (CX-Programmer Versions 9.66 and prior and CX-Server Versions 5.0.23 and prior), when processing project files, the application fails to check if it is referencing freed memory. An attacker could use a specially crafted project file to exploit an...
Omron Cx-server
Omron Cx-programmer
Omron Cx-one
6.8
CVSSv2
CVE-2018-18993
Two stack-based buffer overflow vulnerabilities have been discovered in CX-One Versions 4.42 and prior (CX-Programmer Versions 9.66 and prior and CX-Server Versions 5.0.23 and prior). When processing project files, the application allows input data to exceed the buffer. An attack...
Omron Cx-one
Omron Cx-programmer
Omron Cx-server
6.8
CVSSv2
CVE-2018-17905
When processing project files in Omron CX-Supervisor Versions 3.4.1.0 and prior and tampering with a specific byte, memory corruption may occur within a specific object.
Omron Cx-supervisor
6.8
CVSSv2
CVE-2018-17909
When processing project files in Omron CX-Supervisor Versions 3.4.1.0 and prior, the application fails to check if it is referencing freed memory, which may allow an malicious user to execute code under the context of the application.
Omron Cx-supervisor
6.8
CVSSv2
CVE-2018-17913
A type confusion vulnerability exists when processing project files in Omron CX-Supervisor Versions 3.4.1.0 and prior, which may allow an malicious user to execute code in the context of the application.
Omron Cx-supervisor
6
CVSSv2
CVE-2021-20836
Out-of-bounds read vulnerability in CX-Supervisor v4.0.0.13 and v4.0.0.16 allows an attacker with administrative privileges to cause information disclosure and/or arbitrary code execution by opening a specially crafted SCS project files.
Omron Cx-supervisor 4.0.0.13
Omron Cx-supervisor 4.0.0.16
6
CVSSv2
CVE-2018-19018
An access of uninitialized pointer vulnerability in CX-Supervisor (Versions 3.42 and prior) could lead to type confusion when processing project files. An attacker could use a specially crafted project file to exploit and execute code under the privileges of the application.
Omron Cx-supervisor
6
CVSSv2
CVE-2018-19015
An attacker could inject commands to launch programs and create, write, and read files on CX-Supervisor (Versions 3.42 and prior) through a specially crafted project file. An attacker could exploit this to execute code under the privileges of the application.
Omron Cx-supervisor
6
CVSSv2
CVE-2014-2369
Cross-site request forgery (CSRF) vulnerability in the web application on Omron NS5, NS8, NS10, NS12, and NS15 HMI terminals 8.1xx up to and including 8.68x allows remote authenticated users to hijack the authentication of unspecified victims via unknown vectors.
Omron Ns Series System Program Firmware 8.68
Omron Ns Series System Program Firmware 8.1
Omron Ns8 Hmi Terminal -
Omron Ns15 Hmi Terminal -
Omron Ns12 Hmi Terminal -
Omron Ns10 Hmi Terminal -
Omron Ns5 Hmi Terminal -
5.4
CVSSv2
CVE-2022-33971
Authentication bypass by capture-replay vulnerability exists in Machine automation controller NX7 series all models V1.28 and previous versions, Machine automation controller NX1 series all models V1.48 and previous versions, and Machine automation controller NJ series all models...
Omron Nx701-1600 Firmware
Omron Nx701-1700 Firmware
Omron Nx701-z700 Firmware
Omron Nx701-z600 Firmware
Omron Nx701-1720 Firmware
Omron Nx701-1620 Firmware
Omron Nx102-1200 Firmware
Omron Nx102-1100 Firmware
Omron Nx102-1000 Firmware
Omron Nx102-1220 Firmware
Omron Nx102-1120 Firmware
Omron Nx102-1020 Firmware
Omron Nx102-9020 Firmware
Omron Nx1p2-1140dt Firmware
Omron Nx1p2-1140dt1 Firmware
Omron Nx1p2-1040dt Firmware
Omron Nx1p2-1040dt1 Firmware
Omron Nx1p2-9024dt Firmware
Omron Nx1p2-9024dt1 Firmware
Omron Nx1w-cif01 Firmware
Omron Nx1w-cif11 Firmware
Omron Nx1w-cif12 Firmware
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-21991
CVE-2024-32674
path traversal
CVE-2023-21987
denial of service
dos
CVE-2024-4647
CVE-2024-25519
CVE-2024-33612
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »