Known Vulnerabilities for products from Omron
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Omron".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Additional devices specifications by Omron can be found at device.report : Omron
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2022-21137 | Omron CX-One Versions 4.60 and prior are vulnerable to a stack-based buffer overflow while processing specific project files,... | 7.8 - HIGH | 2022-01-14 | 2022-03-17 |
| CVE-2021-27413 | Omron CX-One Versions 4.60 and prior, including CX-Server Versions 5.0.29.0 and prior, are vulnerable to a stack-based buffer... | 7.8 - HIGH | 2021-05-13 | 2021-05-21 |
| CVE-2021-20836 | Out-of-bounds read vulnerability in CX-Supervisor v4.0.0.13 and v4.0.0.16 allows an attacker with administrative privileges t... | 6.5 - MEDIUM | 2021-10-19 | 2021-10-22 |
| CVE-2020-27261 | The Omron CX-One Version 4.60 and prior is vulnerable to a stack-based buffer overflow, which may allow an attacker to remote... | 8.8 - HIGH | 2021-02-09 | 2021-02-11 |
| CVE-2020-27259 | The Omron CX-One Version 4.60 and prior may allow an attacker to supply a pointer to arbitrary memory locations, which may al... | 8.8 - HIGH | 2021-02-09 | 2021-02-11 |
| CVE-2020-27257 | This vulnerability allows local attackers to execute arbitrary code due to the lack of proper validation of user-supplied dat... | 7.8 - HIGH | 2021-02-09 | 2021-02-12 |
| CVE-2020-6986 | In all versions of Omron PLC CJ Series, an attacker can send a series of specific data packets within a short period, causing... | 7.5 - HIGH | 2020-03-05 | 2020-03-09 |
| CVE-2019-18269 | In Omron PLC CJ series, all versions, and Omron PLC CS series, all versions, the software properly checks for the existence o... | 9.8 - CRITICAL | 2019-12-16 | 2023-04-27 |
| CVE-2019-18261 | In Omron PLC CS series, all versions, Omron PLC CJ series, all versions, and Omron PLC NJ series, all versions, the software ... | 9.8 - CRITICAL | 2019-12-16 | 2019-12-27 |
| CVE-2019-18259 | In Omron PLC CJ series, all versions and Omron PLC CS series, all versions, an attacker could spoof arbitrary messages or exe... | 9.8 - CRITICAL | 2019-12-16 | 2019-12-27 |
| CVE-2019-18251 | In Omron CX-Supervisor, Versions 3.5 (12) and prior, Omron CX-Supervisor ships with Teamviewer Version 5.0.8703 QS. This vers... | 8.8 - HIGH | 2019-11-26 | 2019-12-11 |
| CVE-2019-13533 | In Omron PLC CJ series, all versions, and Omron PLC CS series, all versions, an attacker could monitor traffic between the PL... | 8.1 - HIGH | 2019-12-16 | 2020-01-02 |
| CVE-2019-10971 | The application (Network Configurator for DeviceNet Safety 3.41 and prior) searches for resources by means of an untrusted se... | 7.8 - HIGH | 2019-06-12 | 2019-10-09 |
| CVE-2019-6556 | When processing project files, the application (Omron CX-Programmer v9.70 and prior and Common Components January 2019 and pr... | 6.6 - MEDIUM | 2019-04-10 | 2019-04-15 |
| CVE-2018-19027 | Three type confusion vulnerabilities exist in CX-One Versions 4.50 and prior and CX-Protocol Versions 2.0 and prior when proc... | 7.8 - HIGH | 2019-01-30 | 2019-10-09 |
| CVE-2018-19020 | When CX-Supervisor (Versions 3.42 and prior) processes project files and tampers with the value of an offset, an attacker can... | 5 - MEDIUM | 2019-02-12 | 2019-10-09 |
| CVE-2018-19019 | A type confusion vulnerability exists when processing project files in CX-Supervisor (Versions 3.42 and prior). An attacker c... | 7.3 - HIGH | 2019-01-22 | 2019-10-09 |
| CVE-2018-19018 | An access of uninitialized pointer vulnerability in CX-Supervisor (Versions 3.42 and prior) could lead to type confusion when... | 7.3 - HIGH | 2019-02-12 | 2019-10-09 |
| CVE-2018-19017 | Several use after free vulnerabilities have been identified in CX-Supervisor (Versions 3.42 and prior). When processing proje... | 8.8 - HIGH | 2019-01-22 | 2019-10-09 |
| CVE-2018-19015 | An attacker could inject commands to launch programs and create, write, and read files on CX-Supervisor (Versions 3.42 and pr... | 7.3 - HIGH | 2019-01-28 | 2020-09-18 |
Known software with vulnerabilities from Omron
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Omron | Cx-supervisor | 3.0 |
| Application | Omron | Network Configurator For Devicenet Safety | 3.41 |
| Operating System | Omron | Ns Series System Program Firmware | 8.1 |
| Hardware | Omron | Ns10 Hmi Terminal | - |
| Hardware | Omron | Ns12 Hmi Terminal | - |
| Hardware | Omron | Ns15 Hmi Terminal | - |
| Hardware | Omron | Ns5 Hmi Terminal | - |
| Hardware | Omron | Ns8 Hmi Terminal | - |
| Hardware | Omron | Plc Cj1 | - |
| Operating System | Omron | Plc Cj1 Firmware | - |
| Hardware | Omron | Plc Cj2 | - |
| Operating System | Omron | Plc Cj2 Firmware | - |
| Operating System | Omron | Plc Nj Firmware | - |
| Application | Omron | Poweract Pro Master Agent | 4.1 |
| Application | Omron | Teamviewer | 5.0.8703_qs |