Vulnerabilities > Omron > Low
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2019-02-12 | CVE-2018-19020 | Out-of-bounds Read vulnerability in Omron Cx-Supervisor 3.5 When CX-Supervisor (Versions 3.42 and prior) processes project files and tampers with the value of an offset, an attacker can force the application to read a value outside of an array. | 3.5 |
2015-10-06 | CVE-2015-0988 | Information Exposure vulnerability in Omron Cx-Programmer Omron CX-One CX-Programmer before 9.6 uses a reversible format for password storage in project source-code files, which makes it easier for local users to obtain sensitive information by reading a file. | 2.1 |
2015-10-06 | CVE-2015-1015 | Information Exposure vulnerability in Omron Cj2H Plc, Cj2M PLC and Cx-Programmer Omron CX-One CX-Programmer before 9.6, CJ2M PLC devices before 2.1, and CJ2H PLC devices before 1.5 use a reversible format for password storage in object files on Compact Flash cards, which makes it easier for local users to obtain sensitive information by reading a file. | 2.1 |
2014-07-24 | CVE-2014-2370 | Cross-Site Scripting vulnerability in Omron products Cross-site scripting (XSS) vulnerability in the web application on Omron NS5, NS8, NS10, NS12, and NS15 HMI terminals 8.1xx through 8.68x allows remote authenticated users to inject arbitrary web script or HTML via crafted data. | 3.5 |