Vulnerabilities > Omron > Cp1W Cif41 Firmware
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-06-19 | CVE-2023-27396 | Missing Authentication for Critical Function vulnerability in Omron products FINS (Factory Interface Network Service) is a message communication protocol, which is designed to be used in closed FA (Factory Automation) networks, and is used in FA networks composed of OMRON products. | 9.8 |
| 2022-07-26 | CVE-2022-31204 | Cleartext Transmission of Sensitive Information vulnerability in Omron products Omron CS series, CJ series, and CP series PLCs through 2022-05-18 use cleartext passwords. | 7.5 |
| 2022-07-26 | CVE-2022-31205 | Cleartext Storage of Sensitive Information vulnerability in Omron products In Omron CS series, CJ series, and CP series PLCs through 2022-05-18, the password for access to the Web UI is stored in memory area D1449...D1452 and can be read out using the Omron FINS protocol without any further authentication. | 7.5 |
| 2022-07-26 | CVE-2022-31207 | Improper Verification of Cryptographic Signature vulnerability in Omron products The Omron SYSMAC Cx product family PLCs (CS series, CJ series, and CP series) through 2022-05-18 lack cryptographic authentication. | 9.8 |