RSS   Vulnerabilities for 'Cx-position'   RSS

2022-04-01
 
CVE-2022-25959

CWE-119
 

 
Omron CX-Position (versions 2.5.3 and prior) is vulnerable to memory corruption while processing a specific project file, which may allow an attacker to execute arbitrary code.

 
 
CVE-2022-26022

CWE-787
 

 
Omron CX-Position (versions 2.5.3 and prior) is vulnerable to an out-of-bounds write while processing a specific project file, which may allow an attacker to execute arbitrary code.

 
 
CVE-2022-26417

CWE-416
 

 
Omron CX-Position (versions 2.5.3 and prior) is vulnerable to a use after free memory condition while processing a specific project file, which may allow an attacker to execute arbitrary code.

 
 
CVE-2022-26419

CWE-787
 

 
Omron CX-Position (versions 2.5.3 and prior) is vulnerable to multiple stack-based buffer overflow conditions while parsing a specific project file, which may allow an attacker to locally execute arbitrary code.

 
2021-02-09
 
CVE-2020-27261

CWE-787
 

 
The Omron CX-One Version 4.60 and prior is vulnerable to a stack-based buffer overflow, which may allow an attacker to remotely execute arbitrary code.

 
 
CVE-2020-27259

NVD-CWE-Other
 

 
The Omron CX-One Version 4.60 and prior may allow an attacker to supply a pointer to arbitrary memory locations, which may allow an attacker to remotely execute arbitrary code.

 
 
CVE-2020-27257

CWE-843
 

 
This vulnerability allows local attackers to execute arbitrary code due to the lack of proper validation of user-supplied data, which can result in a type-confusion condition in the Omron CX-One Version 4.60 and prior devices.

 

 >>> Vendor: Omron 25 Products
Worldview
Openwnn
Ns10 hmi terminal
Ns12 hmi terminal
Ns15 hmi terminal
Ns5 hmi terminal
Ns8 hmi terminal
Ns series system program firmware
Cx-programmer
Cj2h plc
Cj2m plc
Cx-supervisor
Cx-flnet
Cx-one
Cx-protocol
Cx-server
Network configurator
Switch box utility
Poweract pro master agent
Common components
Network configurator for devicenet safety
Plc cj firmware
Plc cs firmware
Plc nj firmware
Cx-position


Copyright 2022, cxsecurity.com

 

Back to Top