OmronCVEs & Vulnerabilities

89 CVEs affecting Omron products, tracked from the National Vulnerability Database, with CVSS/EPSS scores and exploitation status.

Most Affected Products

cx-programmer 28cx-supervisor 21cx-one 11cx-server 9openwnn 9cx-protocol 7cx-position 7nj101-1000 6
CVE-2020-6986HIGH

In all versions of Omron PLC CJ Series, an attacker can send a series of specific data packets within a short period, causing a service error on the PLC Ethernet module, which in turn causes a PLC service denied result.

6 Mar 2020
7.5
CVSS
CVE-2019-18269CRITICAL

Omron’s CS and CJ series PLCs have an unrestricted externally accessible lock vulnerability.

16 Dec 2019
9.8
CVSS
CVE-2019-18261CRITICAL

In Omron PLC CS series, all versions, Omron PLC CJ series, all versions, and Omron PLC NJ series, all versions, the software does not implement sufficient measures to prevent multiple failed authentication attempts within in a short time frame, making it more susceptible to brute force attacks.

16 Dec 2019
9.8
CVSS
CVE-2019-18259CRITICAL

In Omron PLC CJ series, all versions and Omron PLC CS series, all versions, an attacker could spoof arbitrary messages or execute commands.

16 Dec 2019
9.8
CVSS
CVE-2019-13533HIGH

In Omron PLC CJ series, all versions, and Omron PLC CS series, all versions, an attacker could monitor traffic between the PLC and the controller and replay requests that could result in the opening and closing of industrial valves.

16 Dec 2019
8.1
CVSS
CVE-2019-18251HIGH

In Omron CX-Supervisor, Versions 3.5 (12) and prior, Omron CX-Supervisor ships with Teamviewer Version 5.0.8703 QS. This version of Teamviewer is vulnerable to an obsolete function vulnerability requiring user interaction to exploit.

26 Nov 2019
8.8
CVSS
CVE-2019-10971HIGH

The application (Network Configurator for DeviceNet Safety 3.41 and prior) searches for resources by means of an untrusted search path that could execute a malicious .dll file not under the application's direct control and outside the intended directories.

12 Jun 2019
7.8
CVSS
CVE-2019-6556MEDIUM

When processing project files, the application (Omron CX-Programmer v9.70 and prior and Common Components January 2019 and prior) fails to check if it is referencing freed memory. An attacker could use a specially crafted project file to exploit and execute code under the privileges of the application.

10 Apr 2019
6.6
CVSS
CVE-2018-16207MEDIUM

PowerAct Pro Master Agent for Windows Version 5.13 and earlier allows authenticated attackers to bypass access restriction to alter or edit unauthorized files via unspecified vectors.

27 Mar 2019
6.5
CVSS
CVE-2018-19020MEDIUM

When CX-Supervisor (Versions 3.42 and prior) processes project files and tampers with the value of an offset, an attacker can force the application to read a value outside of an array.

13 Feb 2019
5.0
CVSS
CVE-2018-19018HIGH

An access of uninitialized pointer vulnerability in CX-Supervisor (Versions 3.42 and prior) could lead to type confusion when processing project files. An attacker could use a specially crafted project file to exploit and execute code under the privileges of the application.

13 Feb 2019
7.3
CVSS
CVE-2018-19027HIGH

Three type confusion vulnerabilities exist in CX-One Versions 4.50 and prior and CX-Protocol Versions 2.0 and prior when processing project files. An attacker could use a specially crafted project file to exploit and execute code under the privileges of the application.

30 Jan 2019
7.8
CVSS
CVE-2018-19015HIGH

An attacker could inject commands to launch programs and create, write, and read files on CX-Supervisor (Versions 3.42 and prior) through a specially crafted project file. An attacker could exploit this to execute code under the privileges of the application.

28 Jan 2019
7.3
CVSS
CVE-2018-19019HIGH

A type confusion vulnerability exists when processing project files in CX-Supervisor (Versions 3.42 and prior). An attacker could use a specially crafted project file to exploit and execute code under the privileges of the application.

22 Jan 2019
7.3
CVSS
CVE-2018-19017HIGH

Several use after free vulnerabilities have been identified in CX-Supervisor (Versions 3.42 and prior). When processing project files, the application fails to check if it is referencing freed memory. An attacker could use a specially crafted project file to exploit and execute code under the privileges of the application.

22 Jan 2019
8.8
CVSS
CVE-2018-19013MEDIUM

An attacker could inject commands to delete files and/or delete the contents of a file on CX-Supervisor (Versions 3.42 and prior) through a specially crafted project file.

22 Jan 2019
5.0
CVSS
CVE-2018-19011HIGH

CX-Supervisor (Versions 3.42 and prior) can execute code that has been injected into a project file. An attacker could exploit this to execute code under the privileges of the application.

22 Jan 2019
8.8
CVSS
CVE-2018-18993HIGH

Two stack-based buffer overflow vulnerabilities have been discovered in CX-One Versions 4.42 and prior (CX-Programmer Versions 9.66 and prior and CX-Server Versions 5.0.23 and prior). When processing project files, the application allows input data to exceed the buffer. An attacker could use a specially crafted project file to overflow the buffer and execute code under the privileges of the application.

5 Dec 2018
7.8
CVSS
CVE-2018-18989HIGH

In CX-One Versions 4.42 and prior (CX-Programmer Versions 9.66 and prior and CX-Server Versions 5.0.23 and prior), when processing project files, the application fails to check if it is referencing freed memory. An attacker could use a specially crafted project file to exploit and execute code under the privileges of the application.

5 Dec 2018
7.8
CVSS
CVE-2018-17913HIGH

A type confusion vulnerability exists when processing project files in Omron CX-Supervisor Versions 3.4.1.0 and prior, which may allow an attacker to execute code in the context of the application.

6 Nov 2018
7.8
CVSS
CVE-2018-17909HIGH

When processing project files in Omron CX-Supervisor Versions 3.4.1.0 and prior, the application fails to check if it is referencing freed memory, which may allow an attacker to execute code under the context of the application.

6 Nov 2018
7.8
CVSS
CVE-2018-17907LOW

When processing project files in Omron CX-Supervisor Versions 3.4.1.0 and prior and tampering with the value of an offset, an attacker can force the application to read a value outside of an array.

6 Nov 2018
3.3
CVSS
CVE-2018-17905HIGH

When processing project files in Omron CX-Supervisor Versions 3.4.1.0 and prior and tampering with a specific byte, memory corruption may occur within a specific object.

6 Nov 2018
7.8
CVSS
CVE-2018-8834HIGH

Parsing malformed project files in Omron CX-One versions 4.42 and prior, including the following applications: CX-FLnet versions 1.00 and prior, CX-Protocol versions 1.992 and prior, CX-Programmer versions 9.65 and prior, CX-Server versions 5.0.22 and prior, Network Configurator versions 3.63 and prior, and Switch Box Utility versions 1.68 and prior, may cause a heap-based buffer overflow.

17 Apr 2018
7.8
CVSS
CVE-2018-7530HIGH

Parsing malformed project files in Omron CX-One versions 4.42 and prior, including the following applications: CX-FLnet versions 1.00 and prior, CX-Protocol versions 1.992 and prior, CX-Programmer versions 9.65 and prior, CX-Server versions 5.0.22 and prior, Network Configurator versions 3.63 and prior, and Switch Box Utility versions 1.68 and prior, may allow the pointer to call an incorrect object resulting in an access of resource using incompatible type condition.

17 Apr 2018
7.8
CVSS
CVE-2018-7514HIGH

Parsing malformed project files in Omron CX-One versions 4.42 and prior, including the following applications: CX-FLnet versions 1.00 and prior, CX-Protocol versions 1.992 and prior, CX-Programmer versions 9.65 and prior, CX-Server versions 5.0.22 and prior, Network Configurator versions 3.63 and prior, and Switch Box Utility versions 1.68 and prior, may cause a stack-based buffer overflow.

17 Apr 2018
7.8
CVSS
CVE-2018-7525MEDIUM

In Omron CX-Supervisor Versions 3.30 and prior, processing a malformed packet by a certain executable may cause an untrusted pointer dereference vulnerability.

21 Mar 2018
5.3
CVSS
CVE-2018-7523MEDIUM

In Omron CX-Supervisor Versions 3.30 and prior, parsing malformed project files may cause a double free vulnerability.

21 Mar 2018
5.3
CVSS
CVE-2018-7521MEDIUM

In Omron CX-Supervisor Versions 3.30 and prior, use after free vulnerabilities can be exploited when CX Supervisor parses a specially crafted project file.

21 Mar 2018
5.3
CVSS
CVE-2018-7519MEDIUM

In Omron CX-Supervisor Versions 3.30 and prior, parsing malformed project files may cause a heap-based buffer overflow.

21 Mar 2018
5.3
CVSS
CVE-2018-7517MEDIUM

In Omron CX-Supervisor Versions 3.30 and prior, parsing malformed project files may cause an out of bounds vulnerability.

21 Mar 2018
5.3
CVSS
CVE-2018-7515MEDIUM

In Omron CX-Supervisor Versions 3.30 and prior, access of uninitialized pointer vulnerabilities can be exploited when CX Supervisor indirectly calls an initialized pointer when parsing malformed packets.

21 Mar 2018
5.3
CVSS
CVE-2018-7513MEDIUM

In Omron CX-Supervisor Versions 3.30 and prior, parsing malformed project files may cause a stack-based buffer overflow.

21 Mar 2018
5.3
CVSS
CVE-2018-6624CRITICAL

OMRON NS devices 1.1 through 1.3 allow remote attackers to bypass authentication via a direct request to the .html file for a specific screen, as demonstrated by monitor.html.

5 Feb 2018
9.8
CVSS
CVE-2015-1015LOW

Omron CX-One CX-Programmer before 9.6, CJ2M PLC devices before 2.1, and CJ2H PLC devices before 1.5 use a reversible format for password storage in object files on Compact Flash cards, which makes it easier for local users to obtain sensitive information by reading a file.

6 Oct 2015
2.1
CVSS
CVE-2015-0988LOW

Omron CX-One CX-Programmer before 9.6 uses a reversible format for password storage in project source-code files, which makes it easier for local users to obtain sensitive information by reading a file.

6 Oct 2015
2.1
CVSS
CVE-2015-0987CRITICAL

Omron CX-One CX-Programmer before 9.6, CJ2M PLC devices before 2.1, and CJ2H PLC devices before 1.5 rely on cleartext password transmission, which allows remote attackers to obtain sensitive information by sniffing the network during a PLC unlock request.

6 Oct 2015
10.0
CVSS
CVE-2014-2370MEDIUM

Cross-site scripting (XSS) vulnerability in the web application on Omron NS5, NS8, NS10, NS12, and NS15 HMI terminals 8.1xx through 8.68x allows remote authenticated users to inject arbitrary web script or HTML via crafted data.

24 Jul 2014
4.0
CVSS
CVE-2014-2369MEDIUM

Cross-site request forgery (CSRF) vulnerability in the web application on Omron NS5, NS8, NS10, NS12, and NS15 HMI terminals 8.1xx through 8.68x allows remote authenticated users to hijack the authentication of unspecified victims via unknown vectors.

24 Jul 2014
4.6
CVSS
CVE-2013-2301MEDIUM

The OMRON OpenWnn application before 1.3.6 for Android uses weak permissions for unspecified files, which allows attackers to obtain sensitive information via an application that accesses the local filesystem.

29 Mar 2013
4.3
CVSS
CVE-2000-0704CRITICALpoc

Buffer overflow in SGI Omron WorldView Wnn allows remote attackers to execute arbitrary commands via long JS_OPEN, JS_MKDIR, or JS_FILE_INFO commands.

20 Oct 2000
10.0
CVSS
← PrevPage 2 / 2Next →
Omron CVEs & Vulnerabilities — 89 Tracked — Page 2