222 matches found
PT-2025-6793 · Unknown · Cx-Programmer
Name of the Vulnerable Software and Affected Versions: CX-Programmer versions 9.83 or lower Description: A vulnerability was found in CX-Programmer, allowing attackers to read sensitive information or cause an application crash by exploiting an out-of-bounds read issue. This could lead to...
Omron CX-Programmer 缓冲区错误漏洞
Omron CX-Programmer is a PLC Programmable Logic Controller programming software from Omron Japan. A buffer error vulnerability exists in Omron CX-Programmer, which originates from an out-of-bounds read and could lead to information disclosure or a crash...
The vulnerability of Omron CX-Programmer software, which involves reading beyond the buffer in memory, allows a malicious actor to cause an unexpected termination of the application or expose protected information.
The vulnerability of Omron CX-Programmer software for programming logic controllers is related to reading data beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to cause the application to terminate abnormally or expose sensitive information through a specially...
CVE-2024-31412
Out-of-bounds read vulnerability exists in CX-Programmer included in CX-One CXONE-ALD-V4 Ver. 9.81 or lower. Opening a specially crafted project file may lead to information disclosure and/or the product being crashed...
CVE-2024-31412
Out-of-bounds read vulnerability exists in CX-Programmer included in CX-One CXONE-ALD-V4 Ver. 9.81 or lower. Opening a specially crafted project file may lead to information disclosure and/or the product being crashed...
CVE-2024-31412
CVE-2024-31412 is an out-of-bounds read vulnerability in Omron CX-Programmer, included with CX-One CXONE-AL[][]D-V4 versions 9.81 or earlier. Opening a specially crafted project file can cause information disclosure and/or the application to crash. Public sources (e.g., NVD/Red Hat) confirm the i...
Multiple vulnerabilities in OMRON Sysmac Studio/CX-One and CX-Programmer
Overview OMRON Sysmac Studio/CX-One and CX-Programmer contain multiple vulnerabilities listed below. Out-of-bounds read CWE-125 - CVE-2024-31412 Free of pointer not at start of buffer CWE-761 - CVE-2024-31413 Michael Heinzl reported these vulnerabilities to JPCERT/CC. JPCERT/CC coordinated with t...
Omron Sysmac Studio 安全漏洞
Omron Sysmac Studio is a unique environment from Omron Japan that integrates logic, motion and drives, robotics, safety, visualization, sensing, and information technology into a single project, thereby reducing the learning curve and intraoperative software costs. A security vulnerability exists...
Omron Sysmac Studio 安全漏洞
Omron Sysmac Studio is a unique environment from Omron Japan that integrates logic, motion and drives, robotics, safety, visualization, sensing, and information technology into a single project, thereby reducing the learning curve and intraoperative software costs. A security vulnerability exists...
PT-2024-3702 · Omron · Cx-One
Name of the Vulnerable Software and Affected Versions: CX-One CXONE-ALD-V4 versions 9.81 and earlier Description: The issue is related to an out-of-bounds read vulnerability in CX-Programmer. This vulnerability can be exploited by opening a specially crafted project file, potentially leading to...
The vulnerability of Omron CX-Programmer software for programming logic controllers lies in its ability to read data beyond the buffer in memory, allowing an attacker to access confidential information or execute arbitrary code.
The vulnerability of Omron CX-Programmer software for programming logic controllers is related to reading data beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to access confidential information or execute arbitrary code...
The vulnerability of Omron CX-Programmer software for programming logic controllers lies in the ability to write data beyond the buffer memory limits. This allows attackers to access confidential information or execute arbitrary code.
The vulnerability of Omron CX-Programmer software for programming logic controllers is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to access confidential information or execute arbitrary code...
Design/Logic Flaw
Use after free vulnerability exists in CX-Programmer Ver.9.79 and earlier. By having a user open a specially crafted CXP file, information disclosure and/or arbitrary code execution may occur. This vulnerability is different from CVE-2023-22317 and CVE-2023-22314...
CVE-2023-22314
Use after free vulnerability exists in CX-Programmer Ver.9.79 and earlier. By having a user open a specially crafted CXP file, information disclosure and/or arbitrary code execution may occur. This vulnerability is different from CVE-2023-22277 and CVE-2023-22317...
CVE-2023-22317
Use after free vulnerability exists in CX-Programmer Ver.9.79 and earlier. By having a user open a specially crafted CXP file, information disclosure and/or arbitrary code execution may occur. This vulnerability is different from CVE-2023-22277 and CVE-2023-22314...
CVE-2023-22314
Use after free vulnerability exists in CX-Programmer Ver.9.79 and earlier. By having a user open a specially crafted CXP file, information disclosure and/or arbitrary code execution may occur. This vulnerability is different from CVE-2023-22277 and CVE-2023-22317...
CVE-2023-22317
Use after free vulnerability exists in CX-Programmer Ver.9.79 and earlier. By having a user open a specially crafted CXP file, information disclosure and/or arbitrary code execution may occur. This vulnerability is different from CVE-2023-22277 and CVE-2023-22314...
Design/Logic Flaw
Use after free vulnerability exists in CX-Programmer Ver.9.79 and earlier. By having a user open a specially crafted CXP file, information disclosure and/or arbitrary code execution may occur. This vulnerability is different from CVE-2023-22277 and CVE-2023-22317...
Design/Logic Flaw
Use after free vulnerability exists in CX-Programmer Ver.9.79 and earlier. By having a user open a specially crafted CXP file, information disclosure and/or arbitrary code execution may occur. This vulnerability is different from CVE-2023-22277 and CVE-2023-22314...
CVE-2023-22277
CVE-2023-22277 describes a use-after-free in CX-Programmer (version 9.79 and earlier) triggered by opening a specially crafted CXP file, potentially enabling information disclosure and/or arbitrary code execution. Connected documents (e.g., Red Hat CVEs) reiterate the same issue. The provided con...