Vulnerabilities > Omron
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-12-07 | CVE-2022-43509 | Out-of-bounds Write vulnerability in Omron Cx-Programmer Out-of-bounds write vulnerability exists in CX-Programmer v.9.77 and earlier, which may lead to information disclosure and/or arbitrary code execution by having a user to open a specially crafted CXP file. | 7.8 |
| 2022-12-07 | CVE-2022-43667 | Out-of-bounds Write vulnerability in Omron Cx-Programmer Stack-based buffer overflow vulnerability exists in CX-Programmer v.9.77 and earlier, which may lead to information disclosure and/or arbitrary code execution by having a user to open a specially crafted CXP file. | 7.8 |
| 2022-10-06 | CVE-2022-3396 | Out-of-bounds Write vulnerability in Omron Cx-Programmer OMRON CX-Programmer 9.78 and prior is vulnerable to an Out-of-Bounds Write, which may allow an attacker to execute arbitrary code. | 9.8 |
| 2022-10-06 | CVE-2022-3397 | Out-of-bounds Write vulnerability in Omron Cx-Programmer OMRON CX-Programmer 9.78 and prior is vulnerable to an Out-of-Bounds Write, which may allow an attacker to execute arbitrary code. | 9.8 |
| 2022-10-06 | CVE-2022-3398 | Out-of-bounds Write vulnerability in Omron Cx-Programmer OMRON CX-Programmer 9.78 and prior is vulnerable to an Out-of-Bounds Write, which may allow an attacker to execute arbitrary code. | 9.8 |
| 2022-09-12 | CVE-2022-2979 | Use After Free vulnerability in Omron Cx-Programmer Opening a specially crafted file could cause the affected product to fail to release its memory reference potentially resulting in arbitrary code execution. | 7.8 |
| 2022-07-26 | CVE-2022-31204 | Cleartext Transmission of Sensitive Information vulnerability in Omron products Omron CS series, CJ series, and CP series PLCs through 2022-05-18 use cleartext passwords. | 7.5 |
| 2022-07-26 | CVE-2022-31205 | Cleartext Storage of Sensitive Information vulnerability in Omron products In Omron CS series, CJ series, and CP series PLCs through 2022-05-18, the password for access to the Web UI is stored in memory area D1449...D1452 and can be read out using the Omron FINS protocol without any further authentication. | 7.5 |
| 2022-07-26 | CVE-2022-31206 | Improper Verification of Cryptographic Signature vulnerability in Omron products The Omron SYSMAC Nx product family PLCs (NJ series, NY series, NX series, and PMAC series) through 2022-005-18 lack cryptographic authentication. | 9.8 |
| 2022-07-26 | CVE-2022-31207 | Improper Verification of Cryptographic Signature vulnerability in Omron products The Omron SYSMAC Cx product family PLCs (CS series, CJ series, and CP series) through 2022-05-18 lack cryptographic authentication. | 9.8 |