Vulnerabilities > CVE-2018-7521 - Use After Free vulnerability in Omron Cx-Supervisor 3.5

CVSS 4.6 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

local

low complexity

omron

CWE-416

NVD

Published: 2018-03-21

Updated: 2019-10-09

Summary

In Omron CX-Supervisor Versions 3.30 and prior, use after free vulnerabilities can be exploited when CX Supervisor parses a specially crafted project file.

Vulnerable Configurations

Part	Description	Count
Application	Omron Omron CX Supervisor 3.5	1

Common Weakness Enumeration (CWE)

CWE-416 - Use After Free

References

http://www.securityfocus.com/bid/103394
https://ics-cert.us-cert.gov/advisories/ICSA-18-072-01