Lucene search
K

18 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 12:4 a.m.7 views

CVE-2022-25230

Use after free vulnerability in CX-Programmer v9.76.1 and earlier which is a part of CX-One v4.60 suite allows an attacker to cause information disclosure and/or arbitrary code execution by having a user to open a specially crafted CXP file. This vulnerability is different from CVE-2022-25325...

7.8CVSS7.3AI score0.01012EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/08/01 12:0 a.m.4 views

PT-2023-5305 · Omron · Cx-Programmer

Name of the Vulnerable Software and Affected Versions: CX-Programmer Included in CX-One CXONE-ALD-V4 versions 9.80 and earlier Description: An out-of-bounds read issue exists, which may allow information disclosure and/or arbitrary code execution when a user opens a specially crafted CXP file. Th...

7.8CVSS7.7AI score0.00202EPSS
Exploits0References7
BDU FSTEC
BDU FSTEC
added 2022/03/16 12:0 a.m.6 views

The vulnerability of the development environment “CX-Programmer,” which is part of the software suite “CX-One” designed for programming and configuring Omron PLCs, stems from the use of memory after it has been freed. This allows a malicious actor to execute arbitrary code.

The vulnerability of the development environment provided by CX-Programmer, which is part of the CX-One software suite designed for programming and configuring Omron PLCs, relates to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

7.8CVSS7.6AI score0.01012EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2022/03/10 5:47 p.m.10 views

CVE-2022-25325

Use after free vulnerability in CX-Programmer v9.76.1 and earlier which is a part of CX-One v4.60 suite allows an attacker to cause information disclosure and/or arbitrary code execution by having a user to open a specially crafted CXP file. This vulnerability is different from CVE-2022-25230...

7.8CVSS0.01012EPSS
Exploits0References1
NVD
NVD
added 2022/03/10 5:47 p.m.13 views

CVE-2022-25230

Use after free vulnerability in CX-Programmer v9.76.1 and earlier which is a part of CX-One v4.60 suite allows an attacker to cause information disclosure and/or arbitrary code execution by having a user to open a specially crafted CXP file. This vulnerability is different from CVE-2022-25325...

7.8CVSS0.01012EPSS
Exploits0References1
OSV
OSV
added 2022/03/10 5:47 p.m.3 views

CVE-2022-25234

Out-of-bounds write vulnerability in CX-Programmer v9.76.1 and earlier which is a part of CX-One v4.60 suite allows an attacker to cause information disclosure and/or arbitrary code execution by having a user to open a specially crafted CXP file. This vulnerability is different from CVE-2022-2112...

7.8CVSS7.6AI score0.00963EPSS
Exploits0References1
Prion
Prion
added 2022/03/10 5:47 p.m.14 views

Cross site scripting

Out-of-bounds write vulnerability in CX-Programmer v9.76.1 and earlier which is a part of CX-One v4.60 suite allows an attacker to cause information disclosure and/or arbitrary code execution by having a user to open a specially crafted CXP file. This vulnerability is different from CVE-2022-2112...

6.8CVSS7.7AI score0.01421EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2022/03/10 5:47 p.m.10 views

Design/Logic Flaw

Use after free vulnerability in CX-Programmer v9.76.1 and earlier which is a part of CX-One v4.60 suite allows an attacker to cause information disclosure and/or arbitrary code execution by having a user to open a specially crafted CXP file. This vulnerability is different from CVE-2022-25325...

6.8CVSS7.9AI score0.01012EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2022/03/10 5:45 p.m.3 views

CVE-2022-21219

Out-of-bounds read vulnerability in CX-Programmer v9.76.1 and earlier which is a part of CX-One v4.60 suite allows an attacker to cause information disclosure and/or arbitrary code execution by having a user to open a specially crafted CXP file...

7.8CVSS7.6AI score0.00963EPSS
Exploits0References1
NVD
NVD
added 2022/03/10 5:45 p.m.21 views

CVE-2022-21219

Out-of-bounds read vulnerability in CX-Programmer v9.76.1 and earlier which is a part of CX-One v4.60 suite allows an attacker to cause information disclosure and/or arbitrary code execution by having a user to open a specially crafted CXP file...

7.8CVSS0.00963EPSS
Exploits0References1
OSV
OSV
added 2022/03/10 5:45 p.m.3 views

CVE-2022-21124

Out-of-bounds write vulnerability in CX-Programmer v9.76.1 and earlier which is a part of CX-One v4.60 suite allows an attacker to cause information disclosure and/or arbitrary code execution by having a user to open a specially crafted CXP file. This vulnerability is different from CVE-2022-2523...

7.8CVSS7.6AI score0.01421EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2022/03/10 5:45 p.m.5 views

CVE-2022-21124

Out-of-bounds write vulnerability in CX-Programmer v9.76.1 and earlier which is a part of CX-One v4.60 suite allows an attacker to cause information disclosure and/or arbitrary code execution by having a user to open a specially crafted CXP file. This vulnerability is different from CVE-2022-2523...

7.8CVSS7.6AI score0.01421EPSS
Exploits0References5Affected Software1
NVD
NVD
added 2022/03/10 5:45 p.m.18 views

CVE-2022-21124

Out-of-bounds write vulnerability in CX-Programmer v9.76.1 and earlier which is a part of CX-One v4.60 suite allows an attacker to cause information disclosure and/or arbitrary code execution by having a user to open a specially crafted CXP file. This vulnerability is different from CVE-2022-2523...

7.8CVSS0.01421EPSS
Exploits0References4
Prion
Prion
added 2022/03/10 5:45 p.m.15 views

Cross site scripting

Out-of-bounds read vulnerability in CX-Programmer v9.76.1 and earlier which is a part of CX-One v4.60 suite allows an attacker to cause information disclosure and/or arbitrary code execution by having a user to open a specially crafted CXP file...

6.8CVSS7.5AI score0.00963EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2022/03/10 5:45 p.m.19 views

Cross site scripting

Out-of-bounds write vulnerability in CX-Programmer v9.76.1 and earlier which is a part of CX-One v4.60 suite allows an attacker to cause information disclosure and/or arbitrary code execution by having a user to open a specially crafted CXP file. This vulnerability is different from CVE-2022-2523...

6.8CVSS7.7AI score0.01421EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2022/03/07 9:0 a.m.14 views

CVE-2022-25230

Use after free vulnerability in CX-Programmer v9.76.1 and earlier which is a part of CX-One v4.60 suite allows an attacker to cause information disclosure and/or arbitrary code execution by having a user to open a specially crafted CXP file. This vulnerability is different from CVE-2022-25325...

8.1AI score0.01012EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/03/07 9:0 a.m.25 views

CVE-2022-21219

Out-of-bounds read vulnerability in CX-Programmer v9.76.1 and earlier which is a part of CX-One v4.60 suite allows an attacker to cause information disclosure and/or arbitrary code execution by having a user to open a specially crafted CXP file...

7.8AI score0.00963EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2018/12/27 12:0 a.m.9 views

The vulnerability of the Omron CX-Programmer development environment lies in the use of memory after it is freed, allowing a malicious actor to execute arbitrary code.

The vulnerability of the Omron CX-Programmer, designed for programming and configuring Omron PLCs, as well as for enabling compatibility between Omron CX-Servers within the Omron CX-One software suite, lies in the use of memory after it is freed. Exploiting this vulnerability could allow an...

5.8CVSS7.7AI score0.01627EPSS
Exploits0References2Affected Software3
Rows per page
Query Builder