Vulnerabilities in Omron
26 resultsCVE-2022-21137HIGHOmron CX-OneEPSS 9.3%CVE-2020-27261—Omron CX-OneEPSS 7.6%CVE-2020-27259—Omron CX-OneEPSS 2.7%CVE-2022-26419HIGHRockwell Automation Studio 5000 Logix Designer Code InjectionEPSS 2.0%CVE-2020-27257—Omron CX-OneEPSS 1.8%CVE-2018-17913—A type confusion vulnerability exists when processing project files in Omron CX-Supervisor Versions 3.4.1.0 and prior, which may allow an atEPSS 1.6%CVE-2018-17909—When processing project files in Omron CX-Supervisor Versions 3.4.1.0 and prior, the application fails to check if it is referencing freed mEPSS 1.6%CVE-2018-19027—Three type confusion vulnerabilities exist in CX-One Versions 4.50 and prior and CX-Protocol Versions 2.0 and prior when processing project EPSS 1.4%CVE-2022-26417HIGHRockwell Automation Studio 5000 Logix Designer Use After FreeEPSS 1.4%CVE-2022-26022HIGHRockwell Automation Studio 5000 Logix Designer Out-of-Bounds WriteEPSS 1.4%CVE-2022-25959HIGHRockwell Automation Studio 5000 Logix Designer Improper Restriction of Operations within the Bounds of a Memory BufferEPSS 1.4%CVE-2014-2370—Omron NS Series HMI Improper Neutralization of Input During Web Page GenerationEPSS 1.4%CVE-2019-6556—When processing project files, the application (Omron CX-Programmer v9.70 and prior and Common Components January 2019 and prior) fails to cEPSS 1.2%CVE-2018-17905—When processing project files in Omron CX-Supervisor Versions 3.4.1.0 and prior and tampering with a specific byte, memory corruption may ocEPSS 1.1%CVE-2019-18269HIGHOmron’s CS and CJ series PLCs have an unrestricted externally accessible lock vulnerability.EPSS 1.0%CVE-2018-17907—When processing project files in Omron CX-Supervisor Versions 3.4.1.0 and prior and tampering with the value of an offset, an attacker can fEPSS 0.9%CVE-2022-45790HIGHOmron FINS memory protection susceptible to bruteforceEPSS 0.7%CVE-2023-0811CRITICAL
Omron CJ1M unit v4.0 and prior has improper access controls on the memory region where the UM password is stored. If an adversary issues a EPSS 0.6%CVE-2014-2369—Omron NS Series HMI Cross-Site Request ForgeryEPSS 0.6%CVE-2022-3398HIGHOMRON CX-Programmer Out-of-bounds WriteEPSS 0.6%