Lucene search
K

9 matches found

Tenable Nessus
Tenable Nessus
added 2023/05/22 12:0 a.m.16 views

Omron CP1L-EL20DR-D Memory Arbitrary Read/Write (CVE-2023-22357)

Active debug code exists in OMRON CP1L-EL20DR-D all versions, which may lead to a command that is not specified in FINS protocol being executed without authentication. A remote unauthenticated attacker may read/write in arbitrary area of the device memory, which may lead to overwriting the...

9.8CVSS8.8AI score0.0117EPSS
Exploits0References2
NVD
NVD
added 2023/01/17 10:15 a.m.32 views

CVE-2023-22357

Active debug code exists in OMRON CP1L-EL20DR-D all versions, which may lead to a command that is not specified in FINS protocol being executed without authentication. A remote unauthenticated attacker may read/write in arbitrary area of the device memory, which may lead to overwriting the...

9.8CVSS9.8AI score0.0117EPSS
Exploits0References1
Prion
Prion
added 2023/01/17 10:15 a.m.22 views

Design/Logic Flaw

Active debug code exists in OMRON CP1L-EL20DR-D all versions, which may lead to a command that is not specified in FINS protocol being executed without authentication. A remote unauthenticated attacker may read/write in arbitrary area of the device memory, which may lead to overwriting the...

7.5CVSS9.7AI score0.0117EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/01/17 12:0 a.m.30 views

CVE-2023-22357

Active debug code exists in OMRON CP1L-EL20DR-D all versions, which may lead to a command that is not specified in FINS protocol being executed without authentication. A remote unauthenticated attacker may read/write in arbitrary area of the device memory, which may lead to overwriting the...

9.9AI score0.0117EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/01/17 12:0 a.m.7 views

CVE-2023-22357

Active debug code exists in OMRON CP1L-EL20DR-D all versions, which may lead to a command that is not specified in FINS protocol being executed without authentication. A remote unauthenticated attacker may read/write in arbitrary area of the device memory, which may lead to overwriting the...

9.9AI score0.0117EPSS
Exploits0References1
CVE
CVE
added 2023/01/17 12:0 a.m.55 views

CVE-2023-22357

CVE-2023-22357 affects the Omron CP1L-EL20DR-D PLC (all versions). The issue is active debug code that allows a remote, unauthenticated attacker to execute commands outside the FINS protocol, enabling read/write access to memory. This can lead to firmware overwrites, DoS, or arbitrary code execut...

9.8CVSS9.7AI score0.0117EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2023/01/11 12:0 a.m.14 views

PT-2023-08: Reading and modifying the entire device memory in PLC OMRON CP1-EL20DR-D

The vulnerability was identified in OMRON CP1L-EL20DR-D all versions. The discovered vulnerability may lead to a command that is not specified in FINS protocol, which can be executed without authentication. A remote attacker may read/write in the device memory, which may lead to overwriting the...

9.8CVSS7.6AI score0.0117EPSS
Exploits0References1
CNVD
CNVD
added 2021/02/03 12:0 a.m.6 views

Denial of Service Vulnerability in Omron CP1L-EM40DR-D

The Omron CP1L-EM40DR-D is a programmable logic controller from Omron Japan. A denial of service vulnerability exists in the Omron CP1L-EM40DR-D, which can be exploited by an attacker to cause a denial of service on the device...

6.9AI score
Exploits0
CNVD
CNVD
added 2018/08/08 12:0 a.m.5 views

Remote Control Command Vulnerability in omron PLC SYSMAC CP1L

The omron PLC SYSMAC CP1L is a PLC from Omron. A remote control command vulnerability exists in the omron PLC SYSMAC CP1L, which can be exploited by an attacker to switch the PLC to monitor mode and then set and force writes to the PLC, as well as operate I/O points and auxiliary relays, and modi...

7.1AI score
Exploits0
Rows per page
Query Builder