Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
omron vulnerabilities and exploits
(subscribe to this query)
4.6
CVSSv2
CVE-2018-7515
In Omron CX-Supervisor Versions 3.30 and prior, access of uninitialized pointer vulnerabilities can be exploited when CX Supervisor indirectly calls an initialized pointer when parsing malformed packets.
Omron Cx-supervisor
4.6
CVSSv2
CVE-2018-7517
In Omron CX-Supervisor Versions 3.30 and prior, parsing malformed project files may cause an out of bounds vulnerability.
Omron Cx-supervisor
4.6
CVSSv2
CVE-2018-7519
In Omron CX-Supervisor Versions 3.30 and prior, parsing malformed project files may cause a heap-based buffer overflow.
Omron Cx-supervisor
4.3
CVSSv2
CVE-2018-17907
When processing project files in Omron CX-Supervisor Versions 3.4.1.0 and prior and tampering with the value of an offset, an attacker can force the application to read a value outside of an array.
Omron Cx-supervisor
4.3
CVSSv2
CVE-2013-2301
The OMRON OpenWnn application prior to 1.3.6 for Android uses weak permissions for unspecified files, which allows malicious users to obtain sensitive information via an application that accesses the local filesystem.
Omron Openwnn 1.2
Omron Openwnn 1.1
Omron Openwnn 1.0
Omron Openwnn
Omron Openwnn 1.3.4
Omron Openwnn 1.3.2
Omron Openwnn 1.3
Omron Openwnn 1.3.3
Omron Openwnn 1.3.1
4
CVSSv2
CVE-2018-16207
PowerAct Pro Master Agent for Windows Version 5.13 and previous versions allows authenticated malicious users to bypass access restriction to alter or edit unauthorized files via unspecified vectors.
Omron Poweract Pro Master Agent
3.5
CVSSv2
CVE-2018-19020
When CX-Supervisor (Versions 3.42 and prior) processes project files and tampers with the value of an offset, an attacker can force the application to read a value outside of an array.
Omron Cx-supervisor
3.5
CVSSv2
CVE-2014-2370
Cross-site scripting (XSS) vulnerability in the web application on Omron NS5, NS8, NS10, NS12, and NS15 HMI terminals 8.1xx up to and including 8.68x allows remote authenticated users to inject arbitrary web script or HTML via crafted data.
Omron Ns Series System Program Firmware 8.1
Omron Ns Series System Program Firmware 8.68
Omron Ns10 Hmi Terminal -
Omron Ns5 Hmi Terminal -
Omron Ns15 Hmi Terminal -
Omron Ns12 Hmi Terminal -
Omron Ns8 Hmi Terminal -
2.1
CVSSv2
CVE-2015-0988
Omron CX-One CX-Programmer prior to 9.6 uses a reversible format for password storage in project source-code files, which makes it easier for local users to obtain sensitive information by reading a file.
Omron Cx-programmer
2.1
CVSSv2
CVE-2015-1015
Omron CX-One CX-Programmer prior to 9.6, CJ2M PLC devices prior to 2.1, and CJ2H PLC devices prior to 1.5 use a reversible format for password storage in object files on Compact Flash cards, which makes it easier for local users to obtain sensitive information by reading a file.
Omron Cj2m Plc 2.0
Omron Cx-programmer 9.5
Omron Cj2h Plc 1.4
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
HTML injection
CVE-2024-35894
SQL
CVE-2024-5105
CVE-2014-100005
CVE-2024-35895
unauthorized
CVE-2024-22120
CVE-2024-35890
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »