Lucene search
IcscertCVELIST:CVE-2020-27257HistoryJan 07, 2021 - 12:00 a.m.
CVE-2020-27257 Omron CX-One
2021-01-0700:00:00
CWE-843
icscert
www.cve.org
0.005 Low
EPSS
Percentile
76.1%
This vulnerability allows local attackers to execute arbitrary code due to the lack of proper validation of user-supplied data, which can result in a type-confusion condition in the Omron CX-One Version 4.60 and prior devices.
CNA Affected
[
{
"product": "CX-One",
"vendor": "Omron",
"versions": [
{
"lessThanOrEqual": "4.60",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
},
{
"product": "CX-Protocol ",
"vendor": "Omron",
"versions": [
{
"lessThanOrEqual": "2.02",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
},
{
"product": "CX-Server",
"vendor": "Omron",
"versions": [
{
"lessThanOrEqual": "5.0.28",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
},
{
"product": "CX-Position",
"vendor": "Omron",
"versions": [
{
"lessThanOrEqual": "2.52",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]Related
prion
prion
Type confusion
2021-02-09 15:15:00
cve
cve
CVE-2020-27257
2021-02-09 15:15:12
zdi
zdi
nvd
nvd
CVE-2020-27257
2021-02-09 15:15:12
ics
ics
Omron CX-One
2021-01-07 12:00:00