Vulnerabilities > Omron > Low

DATE CVE VULNERABILITY TITLE RISK
2019-02-12 CVE-2018-19020 Out-of-bounds Read vulnerability in Omron Cx-Supervisor 3.5
When CX-Supervisor (Versions 3.42 and prior) processes project files and tampers with the value of an offset, an attacker can force the application to read a value outside of an array.
network
omron CWE-125
3.5
2015-10-06 CVE-2015-0988 Information Exposure vulnerability in Omron Cx-Programmer
Omron CX-One CX-Programmer before 9.6 uses a reversible format for password storage in project source-code files, which makes it easier for local users to obtain sensitive information by reading a file.
local
low complexity
omron CWE-200
2.1
2015-10-06 CVE-2015-1015 Information Exposure vulnerability in Omron Cj2H Plc, Cj2M PLC and Cx-Programmer
Omron CX-One CX-Programmer before 9.6, CJ2M PLC devices before 2.1, and CJ2H PLC devices before 1.5 use a reversible format for password storage in object files on Compact Flash cards, which makes it easier for local users to obtain sensitive information by reading a file.
local
low complexity
omron CWE-200
2.1
2014-07-24 CVE-2014-2370 Cross-Site Scripting vulnerability in Omron products
Cross-site scripting (XSS) vulnerability in the web application on Omron NS5, NS8, NS10, NS12, and NS15 HMI terminals 8.1xx through 8.68x allows remote authenticated users to inject arbitrary web script or HTML via crafted data.
network
omron CWE-79
3.5