Vulnerabilities > Omron > Sysmac Cp1H Firmware

DATE CVE VULNERABILITY TITLE RISK
2022-07-26 CVE-2022-31204 Cleartext Transmission of Sensitive Information vulnerability in Omron products
Omron CS series, CJ series, and CP series PLCs through 2022-05-18 use cleartext passwords.
network
low complexity
omron CWE-319
7.5
2022-07-26 CVE-2022-31205 Cleartext Storage of Sensitive Information vulnerability in Omron products
In Omron CS series, CJ series, and CP series PLCs through 2022-05-18, the password for access to the Web UI is stored in memory area D1449...D1452 and can be read out using the Omron FINS protocol without any further authentication.
network
low complexity
omron CWE-312
7.5
2022-07-26 CVE-2022-31207 Improper Verification of Cryptographic Signature vulnerability in Omron products
The Omron SYSMAC Cx product family PLCs (CS series, CJ series, and CP series) through 2022-05-18 lack cryptographic authentication.
network
low complexity
omron CWE-347
critical
9.8