← volver
CVE-2022-45794

Omron CJ-series and CS-series unauthenticated filesystem access.

CVSS 8.6 HIGHEPSS 0.5%CWE-306
An attacker with network access to the affected PLC (CJ-series and CS-series PLCs, all versions) may use a network protocol to read and write files on the PLC internal memory and memory card.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N
Productos afectados
Omron · CJ-series and CS-series CPU modules

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://www.dragos.com/advisory/omron-plc-and-engineering-software-network-and-file-format-access/https://www.fa.omron.co.jp/product/security/assets/pdf/en/OMSR-2023-002_en.pdf