CVE-2022-3397 OMRON CX-Programmer Out-of-bounds Write

OMRON CX-Programmer 9.78 and prior is vulnerable to an Out-of-Bounds Write, which may allow an attacker to execute arbitrary code...

CVE-2022-3397

Omron CX-Programmer is affected: version 9.78 and earlier contain an Out-of-Bounds Write in the CXP file parser that can allow arbitrary code execution. Exploitation described as requiring user interaction (e.g., visiting a malicious page or opening a malicious file) with remote-code-execution po...

CVE-2022-3397 OMRON CX-Programmer Out-of-bounds Write

OMRON CX-Programmer 9.78 and prior is vulnerable to an Out-of-Bounds Write, which may allow an attacker to execute arbitrary code...

Omron CX-Programmer 缓冲区错误漏洞

Omron CX-Programmer is a PLC Programmable Logic Controller programming software from Omron Japan. A buffer error vulnerability exists in Omron CX-Programmer version 9.78 and prior versions, which can be exploited by an attacker to achieve arbitrary code execution via an out-of-bounds write...

Omron CX-Programmer 缓冲区错误漏洞

Omron CX-Programmer is a PLC Programmable Logic Controller programming software from Omron Japan. A buffer error vulnerability exists in Omron CX-Programmer version 9.78 and earlier, which stems from vulnerability to out-of-bounds writes, which could allow an attacker to execute arbitrary code...

Omron CX-Programmer 缓冲区错误漏洞

Omron CX-Programmer is a PLC Programmable Logic Controller programming software from Omron Japan. A buffer error vulnerability exists in Omron CX-Programmer version 9.78 and earlier, which stems from vulnerability to out-of-bounds writes, which could allow an attacker to execute arbitrary code...

PT-2022-4954 · Omron · Cx-Programmer

Name of the Vulnerable Software and Affected Versions: Omron CX-Programmer versions 9.78 and prior Description: The issue is related to an Out-of-Bounds Write, which may allow an attacker to execute arbitrary code. This is due to a buffer overflow vulnerability in the CX-P.exe executable file,...

PT-2022-4955 · Omron · Omron Cx-Programmer

Name of the Vulnerable Software and Affected Versions: OMRON CX-Programmer versions 9.78 and prior Description: The issue is related to an Out-of-Bounds Write, which may allow an attacker to execute arbitrary code. This is due to a buffer overflow vulnerability in the CX-P.exe executable file of...

OMRON CX-Programmer

1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION : Low attack complexity Vendor : Omron Equipment : CX-Programmer Vulnerabilities : Out-of-bounds Write 2. RISK EVALUATION Successful exploitation of these vulnerabilities could crash the device or may allow arbitrary code execution. 3. TECHNICAL DETAILS...

PT-2022-4956 · Omron · Cx-Programmer

Name of the Vulnerable Software and Affected Versions: OMRON CX-Programmer versions 9.78 and prior Description: The issue is related to an Out-of-Bounds Write, which may allow an attacker to execute arbitrary code. This vulnerability is associated with the possibility of writing beyond the buffer...

CVE-2022-2979 Omron CX-Programmer

Opening a specially crafted file could cause the affected product to fail to release its memory reference potentially resulting in arbitrary code execution...

CVE-2022-2979 Omron CX-Programmer

Opening a specially crafted file could cause the affected product to fail to release its memory reference potentially resulting in arbitrary code execution...

Omron CX-Programmer 资源管理错误漏洞

Omron CX-Programmer is a PLC Programmable Logic Controller programming software from Omron Japan. A security vulnerability exists in Omron CX-Programmer versions prior to v9.78, which stems from the fact that opening a specially crafted file may cause the affected product to fail to free its memo...

Omron CX-Programmer

1. EXECUTIVE SUMMARY CVSS v3 7,8 ATTENTION: Low attack complexity Vendor: Omron Equipment: CX-Programmer Vulnerability: Use After Free 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to execute arbitrary code. 3. TECHNICAL DETAILS 3.1 AFFECTED PRODUCTS...

PT-2022-4526 · Omron · Cx-One

Name of the Vulnerable Software and Affected Versions: CX-One affected versions not specified Description: The issue is related to a use-after-free vulnerability in the CX-Programmer development environment, part of the CX-One software suite used for programming and configuring Omron PLCs. This...

Omron CX-One CX-Programmer CXP File Parsing Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Omron CX-One. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of CXP...

Former CIA Engineer Convicted of Leaking 'Vault 7' Hacking Secrets to WikiLeaks

Joshua Schulte, a former programmer with the U.S. Central Intelligence Agency CIA, has been found guilty of leaking a trove of classified hacking tools and exploits dubbed Vault 7 to WikiLeaks. The 33-year-old engineer had been charged in June 2018 with unauthorized disclosure of classified...

Unused Return

Lines of code Vulnerability details Impact Configuration Check: unused-return Severity: Medium Confidence: Medium Description: The return value of this external call is not stored in a local or state variable. Unused return values of function calls are indicative of programmer errors which may ha...

CVE-2022-25325

Use after free vulnerability in CX-Programmer v9.76.1 and earlier which is a part of CX-One v4.60 suite allows an attacker to cause information disclosure and/or arbitrary code execution by having a user to open a specially crafted CXP file. This vulnerability is different from CVE-2022-25230...

CVE-2022-25325

Use after free vulnerability in CX-Programmer v9.76.1 and earlier which is a part of CX-One v4.60 suite allows an attacker to cause information disclosure and/or arbitrary code execution by having a user to open a specially crafted CXP file. This vulnerability is different from CVE-2022-25230...