Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
omron vulnerabilities and exploits
(subscribe to this query)
8.1
CVSSv3
CVE-2019-13533
In Omron PLC CJ series, all versions, and Omron PLC CS series, all versions, an attacker could monitor traffic between the PLC and the controller and replay requests that could result in the opening and closing of industrial valves.
Omron Plc Cj Firmware
Omron Plc Cs Firmware
7.8
CVSSv3
CVE-2022-45792
Project files may contain malicious contents which the software will use to create files on the filesystem. This allows directory traversal and overwriting files with the privileges of the logged-in user.
Omron Sysmac Studio
7.8
CVSSv3
CVE-2022-45793
Sysmac Studio installs executables in a directory with poor permissions. This can allow a locally-authenticated malicious user to overwrite files which will result in code execution with privileges of a different user.
Omron Automation Software Sysmac Studio
7.8
CVSSv3
CVE-2023-22277
Use after free vulnerability exists in CX-Programmer Ver.9.79 and previous versions. By having a user open a specially crafted CXP file, information disclosure and/or arbitrary code execution may occur. This vulnerability is different from CVE-2023-22317 and CVE-2023-22314.
Omron Cx-programmer
7.8
CVSSv3
CVE-2023-22314
Use after free vulnerability exists in CX-Programmer Ver.9.79 and previous versions. By having a user open a specially crafted CXP file, information disclosure and/or arbitrary code execution may occur. This vulnerability is different from CVE-2023-22277 and CVE-2023-22317.
Omron Cx-programmer
7.8
CVSSv3
CVE-2023-22317
Use after free vulnerability exists in CX-Programmer Ver.9.79 and previous versions. By having a user open a specially crafted CXP file, information disclosure and/or arbitrary code execution may occur. This vulnerability is different from CVE-2023-22277 and CVE-2023-22314.
Omron Cx-programmer
7.8
CVSSv3
CVE-2023-38747
Heap-based buffer overflow vulnerability exists in CX-Programmer Included in CX-One CXONE-AL[][]D-V4 V9.80 and previous versions. By having a user open a specially crafted CXP file, information disclosure and/or arbitrary code execution may occur.
Omron Cx-programmer
7.8
CVSSv3
CVE-2023-38748
Use after free vulnerability exists in CX-Programmer Included in CX-One CXONE-AL[][]D-V4 V9.80 and previous versions. By having a user open a specially crafted CXP file, information disclosure and/or arbitrary code execution may occur.
Omron Cx-programmer
7.8
CVSSv3
CVE-2023-38746
Out-of-bounds read vulnerability/issue exists in CX-Programmer Included in CX-One CXONE-AL[][]D-V4 V9.80 and previous versions. By having a user open a specially crafted CXP file, information disclosure and/or arbitrary code execution may occur.
Omron Cx-programmer
7.8
CVSSv3
CVE-2023-27385
Heap-based buffer overflow vulnerability exists in CX-Drive All models all versions. By having a user open a specially crafted SDD file, arbitrary code may be executed and/or information may be disclosed.
Omron Cx-drive
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32886
insecure direct object reference
CVE-2024-34342
file inclusion
CVE-2024-34562
CVE-2024-34347
CVE-2024-26026
CVE-2024-4647
unprivileged
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »