Vulnerabilities for Cx-position (...) - CXSECURITY.COM

Vulnerabilities for 'Cx-position'

2022-04-01

CVE-2022-25959

CWE-119

Omron CX-Position (versions 2.5.3 and prior) is vulnerable to memory corruption while processing a specific project file, which may allow an attacker to execute arbitrary code.

CVE-2022-26022

CWE-787

Omron CX-Position (versions 2.5.3 and prior) is vulnerable to an out-of-bounds write while processing a specific project file, which may allow an attacker to execute arbitrary code.

CVE-2022-26417

CWE-416

Omron CX-Position (versions 2.5.3 and prior) is vulnerable to a use after free memory condition while processing a specific project file, which may allow an attacker to execute arbitrary code.

CVE-2022-26419

CWE-787

Omron CX-Position (versions 2.5.3 and prior) is vulnerable to multiple stack-based buffer overflow conditions while parsing a specific project file, which may allow an attacker to locally execute arbitrary code.

2021-02-09

CVE-2020-27261

CWE-787

The Omron CX-One Version 4.60 and prior is vulnerable to a stack-based buffer overflow, which may allow an attacker to remotely execute arbitrary code.

CVE-2020-27259

NVD-CWE-Other

The Omron CX-One Version 4.60 and prior may allow an attacker to supply a pointer to arbitrary memory locations, which may allow an attacker to remotely execute arbitrary code.

CVE-2020-27257

CWE-843

This vulnerability allows local attackers to execute arbitrary code due to the lack of proper validation of user-supplied data, which can result in a type-confusion condition in the Omron CX-One Version 4.60 and prior devices.

>>> Vendor: Omron 25 Products

Ns10 hmi terminal

Ns12 hmi terminal

Ns15 hmi terminal

Ns5 hmi terminal

Ns8 hmi terminal

Ns series system program firmware

Network configurator

Switch box utility

Poweract pro master agent

Common components

Network configurator for devicenet safety

Plc cj firmware

Plc cs firmware

Plc nj firmware

Cx-position

Copyright 2024, cxsecurity.com