Lucene search
IcscertCVELIST:CVE-2022-26419HistoryMar 29, 2022 - 12:00 a.m.
CVE-2022-26419 Rockwell Automation Studio 5000 Logix Designer Code Injection
2022-03-2900:00:00
CWE-121
icscert
www.cve.org
1
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
0.008 Low
EPSS
Percentile
81.2%
Omron CX-Position (versions 2.5.3 and prior) is vulnerable to multiple stack-based buffer overflow conditions while parsing a specific project file, which may allow an attacker to locally execute arbitrary code.
CNA Affected
[
{
"product": "CX-Position",
"vendor": "Omron",
"versions": [
{
"lessThanOrEqual": "2.5.3",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]Related
cve
cve
CVE-2022-26419
2022-04-01 23:15:14
cnvd
cnvd
Omron CX-Position Buffer Overflow Vulnerability
2022-03-31 00:00:00
nvd
nvd
CVE-2022-26419
2022-04-01 23:15:14
zdi
zdi
prion
prion
Stack overflow
2022-04-01 23:15:00
ics
ics
Omron CX-Position
2022-03-29 12:00:00
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
0.008 Low
EPSS
Percentile
81.2%
Related for CVELIST:CVE-2022-26419