Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
NA

CVE-2023-38748

Published: 03/08/2023 Updated: 08/08/2023
CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8
VMScore: 0
Subscribe to Omron

Vulnerability Summary

Use after free vulnerability exists in CX-Programmer Included in CX-One CXONE-AL[][]D-V4 V9.80 and previous versions. By having a user open a specially crafted CXP file, information disclosure and/or arbitrary code execution may occur.

Vulnerable Product Search on Vulmon Subscribe to Product

omron cx-programmer

References

CWE-416https://www.ia.omron.com/product/vulnerability/OMSR-2023-005_en.pdfhttps://jvn.jp/en/vu/JVNVU93286117/https://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
man-in-the-middleCVE-2024-34558CVE-2024-32674CVE-2024-34351XPath injectionCVE-2023-45866CVE-2024-25528CVE-2024-25517path traversal
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook