Vulnerabilities > Omron
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-01-28 | CVE-2018-19015 | OS Command Injection vulnerability in Omron Cx-Supervisor An attacker could inject commands to launch programs and create, write, and read files on CX-Supervisor (Versions 3.42 and prior) through a specially crafted project file. | 7.3 |
| 2019-01-22 | CVE-2018-19019 | Incorrect Type Conversion or Cast vulnerability in Omron Cx-Supervisor A type confusion vulnerability exists when processing project files in CX-Supervisor (Versions 3.42 and prior). | 7.3 |
| 2019-01-22 | CVE-2018-19017 | Use After Free vulnerability in Omron Cx-Supervisor Several use after free vulnerabilities have been identified in CX-Supervisor (Versions 3.42 and prior). | 8.8 |
| 2019-01-22 | CVE-2018-19013 | Command Injection vulnerability in Omron Cx-Supervisor An attacker could inject commands to delete files and/or delete the contents of a file on CX-Supervisor (Versions 3.42 and prior) through a specially crafted project file. | 5.0 |
| 2019-01-22 | CVE-2018-19011 | Code Injection vulnerability in Omron Cx-Supervisor CX-Supervisor (Versions 3.42 and prior) can execute code that has been injected into a project file. | 8.8 |
| 2018-12-04 | CVE-2018-18993 | Out-of-bounds Write vulnerability in Omron Cx-One, Cx-Programmer and Cx-Server Two stack-based buffer overflow vulnerabilities have been discovered in CX-One Versions 4.42 and prior (CX-Programmer Versions 9.66 and prior and CX-Server Versions 5.0.23 and prior). | 7.8 |
| 2018-12-04 | CVE-2018-18989 | Use After Free vulnerability in Omron Cx-One, Cx-Programmer and Cx-Server In CX-One Versions 4.42 and prior (CX-Programmer Versions 9.66 and prior and CX-Server Versions 5.0.23 and prior), when processing project files, the application fails to check if it is referencing freed memory. | 7.8 |
| 2018-11-05 | CVE-2018-17913 | Incorrect Type Conversion or Cast vulnerability in Omron Cx-Supervisor A type confusion vulnerability exists when processing project files in Omron CX-Supervisor Versions 3.4.1.0 and prior, which may allow an attacker to execute code in the context of the application. | 7.8 |
| 2018-11-05 | CVE-2018-17909 | Use After Free vulnerability in Omron Cx-Supervisor When processing project files in Omron CX-Supervisor Versions 3.4.1.0 and prior, the application fails to check if it is referencing freed memory, which may allow an attacker to execute code under the context of the application. | 7.8 |
| 2018-11-05 | CVE-2018-17907 | Information Exposure vulnerability in Omron Cx-Supervisor When processing project files in Omron CX-Supervisor Versions 3.4.1.0 and prior and tampering with the value of an offset, an attacker can force the application to read a value outside of an array. | 3.3 |