Vulnerabilities > Omron > Cp1W Cif41 Firmware > High

DATE CVE VULNERABILITY TITLE RISK
2022-07-26 CVE-2022-31204 Cleartext Transmission of Sensitive Information vulnerability in Omron products
Omron CS series, CJ series, and CP series PLCs through 2022-05-18 use cleartext passwords.
network
low complexity
omron CWE-319
7.5
2022-07-26 CVE-2022-31205 Cleartext Storage of Sensitive Information vulnerability in Omron products
In Omron CS series, CJ series, and CP series PLCs through 2022-05-18, the password for access to the Web UI is stored in memory area D1449...D1452 and can be read out using the Omron FINS protocol without any further authentication.
network
low complexity
omron CWE-312
7.5