Vulnerabilities > Omron > CX Server > 5.0.23
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-05-13 | CVE-2021-27413 | Out-of-bounds Write vulnerability in Omron Cx-One and Cx-Server Omron CX-One Versions 4.60 and prior, including CX-Server Versions 5.0.29.0 and prior, are vulnerable to a stack-based buffer overflow, which may allow an attacker to execute arbitrary code. | 7.8 |
| 2021-02-09 | CVE-2020-27261 | Out-of-bounds Write vulnerability in Omron products The Omron CX-One Version 4.60 and prior is vulnerable to a stack-based buffer overflow, which may allow an attacker to remotely execute arbitrary code. | 8.8 |
| 2021-02-09 | CVE-2020-27259 | Unspecified vulnerability in Omron products The Omron CX-One Version 4.60 and prior may allow an attacker to supply a pointer to arbitrary memory locations, which may allow an attacker to remotely execute arbitrary code. | 8.8 |
| 2021-02-09 | CVE-2020-27257 | Type Confusion vulnerability in Omron products This vulnerability allows local attackers to execute arbitrary code due to the lack of proper validation of user-supplied data, which can result in a type-confusion condition in the Omron CX-One Version 4.60 and prior devices. | 7.8 |
| 2018-12-04 | CVE-2018-18993 | Out-of-bounds Write vulnerability in Omron Cx-One, Cx-Programmer and Cx-Server Two stack-based buffer overflow vulnerabilities have been discovered in CX-One Versions 4.42 and prior (CX-Programmer Versions 9.66 and prior and CX-Server Versions 5.0.23 and prior). | 7.8 |
| 2018-12-04 | CVE-2018-18989 | Use After Free vulnerability in Omron Cx-One, Cx-Programmer and Cx-Server In CX-One Versions 4.42 and prior (CX-Programmer Versions 9.66 and prior and CX-Server Versions 5.0.23 and prior), when processing project files, the application fails to check if it is referencing freed memory. | 7.8 |