34 matches found
CVE-2022-31205
In Omron CS series, CJ series, and CP series PLCs through 2022-05-18, the password for access to the Web UI is stored in memory area D1449...D1452 and can be read out using the Omron FINS protocol without any further authentication...
CVE-2019-18259
In Omron PLC CJ series, all versions and Omron PLC CS series, all versions, an attacker could spoof arbitrary messages or execute commands...
EUVD-2019-8061
Malware in sbrugna...
EUVD-2022-48650
Malicious code in bioql PyPI...
CVE-2022-45794
An attacker with network access to the affected PLC CJ-series and CS-series PLCs, all versions may use a network protocol to read and write files on the PLC internal memory and memory card...
Omron PLC Security Vulnerability
Omron PLC CJ series and so on are products of Omron Japan.Omron PLC CJ series is a CJ series Programmable Logic Controller PLC.Omron PLC CS series is a CS series Programmable Logic Controller PLC.Omron PLC NJ series is a NJ series programmable logic controller. A security vulnerability exists in...
CVE-2022-45794 Omron CJ-series and CS-series unauthenticated filesystem access.
An attacker with network access to the affected PLC CJ-series and CS-series PLCs, all versions may use a network protocol to read and write files on the PLC internal memory and memory card...
Some EZVIZ products Security Vulnerabilities
EZVIZ CS Series is a series of cameras from the Chinese company Fluorite EZVIZ. A security vulnerability exists in some EZVIZ products. A remote attacker could exploit the vulnerability to obtain sensitive information by sending a specially crafted message to the affected device. The following...
EZVIZ CS Series Buffer Error Vulnerability
EZVIZ CS Series is a series of cameras from the Chinese company EZVIZ. A security vulnerability exists in the EZVIZ CS Series that originates from two stack buffer overflows in the netClientSetWlanCfg function of the ZVIZ SDK Command Server, which allows remote code execution by an authenticated...
EZVIZ CS Series Buffer Error Vulnerability
EZVIZ CS Series is a series of cameras from the Chinese company EZVIZ. The EZVIZ CS Series suffers from a security vulnerability that stems from two stack-based buffer overflows in the mulicastparsesadppacket and mulicastgetpacktype functions of the SADP multicast protocol, which allow an...
CVE-2023-27396
FINS Factory Interface Network Service is a message communication protocol, which is designed to be used in closed FA Factory Automation networks, and is used in FA networks composed of OMRON products. Multiple OMRON products that implement FINS protocol contain following security issues --...
CVE-2023-27396
FINS Factory Interface Network Service is a message communication protocol, which is designed to be used in closed FA Factory Automation networks, and is used in FA networks composed of OMRON products. Multiple OMRON products that implement FINS protocol contain following security issues --...
Omron SYSMAC CS/CJ/CP Series 访问控制错误漏洞
The Omron SYSMAC CS/CJ/CP Series is a series of programmable controllers from Omron Corporation Japan. A security vulnerability exists in the Omron SYSMAC CS/CJ/CP Series due to a security issue with the FINS protocol that involves clear-text communication, undefined authentication, and other...
PT-2023-21095 · Omron · Sysmac Nx1P-Series Cpu Units +4
Name of the Vulnerable Software and Affected Versions: SYSMAC CS-series CPU Units, all versions SYSMAC CJ-series CPU Units, all versions SYSMAC CP-series CPU Units, all versions SYSMAC NJ-series CPU Units, all versions SYSMAC NX1P-series CPU Units, all versions SYSMAC NX102-series CPU Units, all...
PT-2023-2420 · Omron · Omron Cs Series
Name of the Vulnerable Software and Affected Versions: Omron CJ-series and CS-series PLCs, all versions Description: The issue is related to the lack of authentication for a critical function in Omron CS/CJ controllers. An attacker with network access to the affected PLC may use a network protoco...
CISA Releases Seven Industrial Control Systems Advisories
CISA released seven 7 Industrial Control Systems ICS advisories on November 29, 2022. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. CISA encourages users and administrators to review the newly released ICS advisories for...
CVE-2022-31207
The Omron SYSMAC Cx product family PLCs CS series, CJ series, and CP series through 2022-05-18 lack cryptographic authentication. They utilize the Omron FINS 9600/TCP protocol for engineering purposes, including downloading projects and control logic to the PLC. This protocol has authentication...
Omron SYSMAC CS/CJ/CP Series 和 NJ/NX Series 数据伪造问题漏洞
Omron SYSMAC CS/CJ/CP Series and Omron SYSMAC NJ/NX Series are products of Omron Corporation, Japan.Omron SYSMAC CS/CJ/CP Series is a series of programmable controllers.Omron SYSMAC NJ/NX Series is a series of machine automation controllers. Omron SYSMAC NJ/NX Series is a series of machine...
Omron SYSMAC CS/CJ/CP Series 和 NJ/NX Series 安全漏洞
Omron SYSMAC CS/CJ/CP Series and Omron SYSMAC NJ/NX Series are products of Omron Corporation, Japan.Omron SYSMAC CS/CJ/CP Series is a series of programmable controllers.Omron SYSMAC NJ/NX Series is a series of machine automation controllers. Omron SYSMAC NJ/NX Series is a series of machine...
PT-2022-3095 · Omron · Omron Cs Series +1
Name of the Vulnerable Software and Affected Versions: Omron CS series, CJ series, and CP series PLCs versions prior to 2022-05-18 Description: The issue is related to the storage of the password for access to the Web UI in memory area D1449...D1452, which can be read out using the Omron FINS...