Vulnerabilities > Omron > CX Supervisor > Medium

DATE CVE VULNERABILITY TITLE RISK
2021-10-19 CVE-2021-20836 Out-of-bounds Read vulnerability in Omron Cx-Supervisor 4.0.0.13/4.0.0.16
Out-of-bounds read vulnerability in CX-Supervisor v4.0.0.13 and v4.0.0.16 allows an attacker with administrative privileges to cause information disclosure and/or arbitrary code execution by opening a specially crafted SCS project files.
local
low complexity
omron CWE-125
6.5
2019-02-12 CVE-2018-19020 Out-of-bounds Read vulnerability in Omron Cx-Supervisor
When CX-Supervisor (Versions 3.42 and prior) processes project files and tampers with the value of an offset, an attacker can force the application to read a value outside of an array.
local
low complexity
omron CWE-125
5.0
2019-01-22 CVE-2018-19013 Command Injection vulnerability in Omron Cx-Supervisor
An attacker could inject commands to delete files and/or delete the contents of a file on CX-Supervisor (Versions 3.42 and prior) through a specially crafted project file.
local
low complexity
omron CWE-77
5.0
2018-03-21 CVE-2018-7525 NULL Pointer Dereference vulnerability in Omron Cx-Supervisor
In Omron CX-Supervisor Versions 3.30 and prior, processing a malformed packet by a certain executable may cause an untrusted pointer dereference vulnerability.
local
low complexity
omron CWE-476
5.3
2018-03-21 CVE-2018-7523 Double Free vulnerability in Omron Cx-Supervisor
In Omron CX-Supervisor Versions 3.30 and prior, parsing malformed project files may cause a double free vulnerability.
local
low complexity
omron CWE-415
5.3
2018-03-21 CVE-2018-7521 Use After Free vulnerability in Omron Cx-Supervisor
In Omron CX-Supervisor Versions 3.30 and prior, use after free vulnerabilities can be exploited when CX Supervisor parses a specially crafted project file.
local
low complexity
omron CWE-416
5.3
2018-03-21 CVE-2018-7519 Out-of-bounds Write vulnerability in Omron Cx-Supervisor
In Omron CX-Supervisor Versions 3.30 and prior, parsing malformed project files may cause a heap-based buffer overflow.
local
low complexity
omron CWE-787
5.3
2018-03-21 CVE-2018-7517 Out-of-bounds Write vulnerability in Omron Cx-Supervisor
In Omron CX-Supervisor Versions 3.30 and prior, parsing malformed project files may cause an out of bounds vulnerability.
local
low complexity
omron CWE-787
5.3
2018-03-21 CVE-2018-7515 Access of Uninitialized Pointer vulnerability in Omron Cx-Supervisor
In Omron CX-Supervisor Versions 3.30 and prior, access of uninitialized pointer vulnerabilities can be exploited when CX Supervisor indirectly calls an initialized pointer when parsing malformed packets.
local
low complexity
omron CWE-824
5.3
2018-03-21 CVE-2018-7513 Out-of-bounds Write vulnerability in Omron Cx-Supervisor
In Omron CX-Supervisor Versions 3.30 and prior, parsing malformed project files may cause a stack-based buffer overflow.
local
low complexity
omron CWE-787
5.3