Lucene search
K

12 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 10:47 a.m.10 views

CVE-2022-31205

In Omron CS series, CJ series, and CP series PLCs through 2022-05-18, the password for access to the Web UI is stored in memory area D1449...D1452 and can be read out using the Omron FINS protocol without any further authentication...

7.5CVSS6.7AI score0.0051EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/02/24 12:0 a.m.6 views

The vulnerability of the microprogramming software used in programmable logic controllers of the SYSMAC series, CS, CJ, and CP, allows attackers to circumvent existing security restrictions and gain unauthorized access to protected information.

The vulnerability of the microprogramming software used in SYSMAC programmable logic controllers of the CS, CJ, and CP series is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker to bypass existing security restrictions and gain unauthorized access t...

9.4CVSS7.7AI score0.00621EPSS
Exploits0References3
NVD
NVD
added 2023/06/19 5:15 a.m.22 views

CVE-2023-27396

FINS Factory Interface Network Service is a message communication protocol, which is designed to be used in closed FA Factory Automation networks, and is used in FA networks composed of OMRON products. Multiple OMRON products that implement FINS protocol contain following security issues --...

9.8CVSS9.7AI score0.01385EPSS
Exploits1References7
OSV
OSV
added 2023/06/19 5:15 a.m.6 views

CVE-2023-27396

FINS Factory Interface Network Service is a message communication protocol, which is designed to be used in closed FA Factory Automation networks, and is used in FA networks composed of OMRON products. Multiple OMRON products that implement FINS protocol contain following security issues --...

9.8CVSS5.9AI score0.01385EPSS
Exploits1References7
Positive Technologies
Positive Technologies
added 2023/04/17 12:0 a.m.5 views

PT-2023-21095 · Omron · Sysmac Nx1P-Series Cpu Units +4

Name of the Vulnerable Software and Affected Versions: SYSMAC CS-series CPU Units, all versions SYSMAC CJ-series CPU Units, all versions SYSMAC CP-series CPU Units, all versions SYSMAC NJ-series CPU Units, all versions SYSMAC NX1P-series CPU Units, all versions SYSMAC NX102-series CPU Units, all...

9.8CVSS7.6AI score0.01385EPSS
Exploits1References12
CNNVD
CNNVD
added 2023/04/17 12:0 a.m.3 views

Omron SYSMAC CS/CJ/CP Series 访问控制错误漏洞

The Omron SYSMAC CS/CJ/CP Series is a series of programmable controllers from Omron Corporation Japan. A security vulnerability exists in the Omron SYSMAC CS/CJ/CP Series due to a security issue with the FINS protocol that involves clear-text communication, undefined authentication, and other...

9.8CVSS8.3AI score0.01385EPSS
Exploits1References9
ATTACKERKB
ATTACKERKB
added 2022/07/26 10:15 p.m.10 views

CVE-2022-31207

The Omron SYSMAC Cx product family PLCs CS series, CJ series, and CP series through 2022-05-18 lack cryptographic authentication. They utilize the Omron FINS 9600/TCP protocol for engineering purposes, including downloading projects and control logic to the PLC. This protocol has authentication...

9.8CVSS7.6AI score0.00733EPSS
Exploits0References3
CNNVD
CNNVD
added 2022/06/28 12:0 a.m.4 views

Omron SYSMAC CS/CJ/CP Series 和 NJ/NX Series 数据伪造问题漏洞

Omron SYSMAC CS/CJ/CP Series and Omron SYSMAC NJ/NX Series are products of Omron Corporation, Japan.Omron SYSMAC CS/CJ/CP Series is a series of programmable controllers.Omron SYSMAC NJ/NX Series is a series of machine automation controllers. Omron SYSMAC NJ/NX Series is a series of machine...

9.8CVSS9AI score0.0082EPSS
Exploits0References6
ICS
ICS
added 2022/06/28 12:0 a.m.89 views

Omron SYSMAC CS/CJ/CP Series and NJ/NX Series

1. EXECUTIVE SUMMARY CVSS v3 6.5 ATTENTION: Exploitable remotely/low attack complexity Vendor: Omron Equipment: SYSMAC CS/CJ/CP Series and NJ/NX Series Vulnerabilities: Cleartext Transmission of Sensitive Information, Insufficient Verification of Data Authenticity, Plaintext Storage of a Password...

9.8CVSS9.8AI score0.0082EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2022/06/22 12:0 a.m.5 views

PT-2022-3095 · Omron · Omron Cs Series +1

Name of the Vulnerable Software and Affected Versions: Omron CS series, CJ series, and CP series PLCs versions prior to 2022-05-18 Description: The issue is related to the storage of the password for access to the Web UI in memory area D1449...D1452, which can be read out using the Omron FINS...

7.8CVSS7.5AI score0.0051EPSS
Exploits0References8
CISA
CISA
added 2022/06/22 12:0 a.m.24 views

CISA Releases Security Advisories Related to OT:ICEFALL (Insecure by Design) Report

CISA is aware that Forescout researchers have released OT:ICEFALL, a report on 56 vulnerabilities caused by insecure-by-design practices in operational technology across multiple vendors. The vulnerabilities are divided into four main categories: insecure engineering protocols, weak cryptography ...

1.7AI score
Exploits0References19
Prion
Prion
added 2020/04/14 8:15 p.m.16 views

Code injection

A vulnerability has been identified in SCALANCE X200-4P IRT, SCALANCE X201-3P IRT, SCALANCE X201-3P IRT PRO, SCALANCE X202-2IRT, SCALANCE X202-2P IRT, SCALANCE X202-2P IRT PRO, SCALANCE X204-2, SCALANCE X204-2FM, SCALANCE X204-2LD, SCALANCE X204-2LD TS, SCALANCE X204-2TS, SCALANCE X204IRT, SCALAN...

5CVSS7.4AI score0.01327EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder