Lucene search
K

225 matches found

cve
cve
added 2022/03/07 9:0 a.m.143 views

CVE-2022-21124

Summary (CVE-2022-21124): An out-of-bounds write in CX-Programmer v9.76.1 and earlier (part of CX-One v4.60) may lead to information disclosure and/or arbitrary code execution when a user opens a specially crafted CXP file. Affected component is CX-Programmer; root cause is an out-of-bounds write...

7.8CVSS7.6AI score0.01456EPSS
Exploits0References4Affected Software1
zdi
zdi
added 2022/02/16 12:0 a.m.19 views

Omron CX-One SDD File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Omron CX-One. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of SDD...

7.8CVSS7.6AI score0.09271EPSS
Exploits0References1
zdi
zdi
added 2022/02/16 12:0 a.m.28 views

Omron CX-One FLN File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Omron CX-One. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of FLN...

7.8CVSS7.7AI score0.09271EPSS
Exploits0References1
nvd
nvd
added 2022/01/14 8:15 p.m.26 views

CVE-2022-21137

Omron CX-One Versions 4.60 and prior are vulnerable to a stack-based buffer overflow while processing specific project files, which may allow an attacker to execute arbitrary code...

7.8CVSS0.09271EPSS
Exploits0References3
osv
osv
added 2022/01/14 8:15 p.m.5 views

CVE-2022-21137

Omron CX-One Versions 4.60 and prior are vulnerable to a stack-based buffer overflow while processing specific project files, which may allow an attacker to execute arbitrary code...

7.8CVSS6.4AI score0.09271EPSS
Exploits0References3
prion
prion
added 2022/01/14 8:15 p.m.12 views

Stack overflow

Omron CX-One Versions 4.60 and prior are vulnerable to a stack-based buffer overflow while processing specific project files, which may allow an attacker to execute arbitrary code...

6.8CVSS8AI score0.09271EPSS
Exploits0References3Affected Software1
cvelist
cvelist
added 2022/01/14 7:10 p.m.24 views

CVE-2022-21137 Omron CX-One

Omron CX-One Versions 4.60 and prior are vulnerable to a stack-based buffer overflow while processing specific project files, which may allow an attacker to execute arbitrary code...

7.8CVSS8.2AI score0.09271EPSS
Exploits0References3
vulnrichment
vulnrichment
added 2022/01/14 7:10 p.m.4 views

CVE-2022-21137 Omron CX-One

Omron CX-One Versions 4.60 and prior are vulnerable to a stack-based buffer overflow while processing specific project files, which may allow an attacker to execute arbitrary code...

7.8CVSS8AI score0.09271EPSS
Exploits0References3
cve
cve
added 2022/01/14 7:10 p.m.113 views

CVE-2022-21137

Omron CX-One has a vulnerability in the CX-FLnet module related to parsing FLN files. The issue is a stack-based/ buffer overflow caused by insufficient validation of the length of user-supplied data before copying into a fixed-size buffer, which can allow remote code execution. Exploitation requ...

7.8CVSS8AI score0.09271EPSS
Exploits0References3Affected Software1
cnvd
cnvd
added 2022/01/07 12:0 a.m.14 views

Omron CX-One Buffer Overflow Vulnerability (CNVD-2022-04998)

Omron CX-One is an integrated toolkit from Omron Japan. The product includes an inverter, temperature controller, and PLC programming software. A buffer overflow vulnerability exists in Omron CX-One, which stems from the product not effectively limiting memory boundaries when processing specific...

7.8CVSS7.9AI score0.09271EPSS
Exploits0References1
cnnvd
cnnvd
added 2022/01/06 12:0 a.m.4 views

Omron CX-One 缓冲区错误漏洞

Omron CX-One is an integrated toolkit from Omron Japan. The product includes an inverter, temperature controller, and PLC programming software. A buffer overflow vulnerability exists in Omron CX-One, which stems from the product not effectively limiting memory boundaries when processing specific...

7.8CVSS6.5AI score0.09271EPSS
Exploits0References8
ics
ics
added 2022/01/06 12:0 a.m.34 views

Omron CX-One

1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Low attack complexity Vendor: Omron Equipment: CX-One Vulnerabilities: Stack-based Buffer Overflow 2. RISK EVALUATION Successful exploitation of this vulnerability may allow arbitrary code execution. 3. TECHNICAL DETAILS 3.1 AFFECTED PRODUCTS The...

7.8CVSS8.3AI score0.09271EPSS
Exploits0References5
checkpoint_advisories
checkpoint_advisories
added 2021/08/26 12:0 a.m.20 views

Omron CX-One Stack Buffer Overflow (CVE-2020-27261)

A stack-based overflow exists in the CX-Position module of OMRON CX-One. The vulnerability is due to input validation error when processing NCI configuration files...

6.8CVSS4.1AI score0.07612EPSS
Exploits0
cnvd
cnvd
added 2021/05/14 12:0 a.m.6 views

Omron CX-One Buffer Overflow Vulnerability (CNVD-2021-36103)

Omron CX-One is an integrated toolkit from Omron Japan. The product includes an inverter, temperature controller, and PLC programming software. A security vulnerability exists in CX-One Versions version 4.60 and earlier. The vulnerability stems from the program's susceptibility to a stack-based...

7.8CVSS7.8AI score0.09987EPSS
Exploits0References1
nvd
nvd
added 2021/05/13 7:15 p.m.29 views

CVE-2021-27413

Omron CX-One Versions 4.60 and prior, including CX-Server Versions 5.0.29.0 and prior, are vulnerable to a stack-based buffer overflow, which may allow an attacker to execute arbitrary code...

7.8CVSS0.09987EPSS
Exploits0References2
osv
osv
added 2021/05/13 7:15 p.m.4 views

CVE-2021-27413

Omron CX-One Versions 4.60 and prior, including CX-Server Versions 5.0.29.0 and prior, are vulnerable to a stack-based buffer overflow, which may allow an attacker to execute arbitrary code...

7.8CVSS7.6AI score0.09987EPSS
Exploits0References2
prion
prion
added 2021/05/13 7:15 p.m.14 views

Stack overflow

Omron CX-One Versions 4.60 and prior, including CX-Server Versions 5.0.29.0 and prior, are vulnerable to a stack-based buffer overflow, which may allow an attacker to execute arbitrary code...

6.8CVSS7.9AI score0.09987EPSS
Exploits0References2Affected Software2
cvelist
cvelist
added 2021/05/13 6:56 p.m.29 views

CVE-2021-27413

Omron CX-One Versions 4.60 and prior, including CX-Server Versions 5.0.29.0 and prior, are vulnerable to a stack-based buffer overflow, which may allow an attacker to execute arbitrary code...

8.1AI score0.09987EPSS
Exploits0References2
cve
cve
added 2021/05/13 6:56 p.m.71 views

CVE-2021-27413

CVE-2021-27413 (Omron CX-One) affects CX-One up to v4.60 and CX-Server up to v5.0.29.0. A flaw in parsing NCI files within the CX-Position component causes a stack-based buffer overflow, enabling arbitrary code execution. ZDI describes remote code execution with attacker-controlled data in NCI pa...

7.8CVSS7.9AI score0.09987EPSS
Exploits0References2Affected Software2
zdi
zdi
added 2021/05/13 12:0 a.m.39 views

Omron CX-One CX-Position NCI File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Omron CX-One. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of NCI...

7.8CVSS5.9AI score0.09987EPSS
Exploits0References1
Rows per page
Query Builder