Omron

Cx-supervisor

20 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2021-20836

  • EPSS 0.9%
  • Veröffentlicht 19.10.2021 03:15:06
  • Zuletzt bearbeitet 21.11.2024 05:47:15

Out-of-bounds read vulnerability in CX-Supervisor v4.0.0.13 and v4.0.0.16 allows an attacker with administrative privileges to cause information disclosure and/or arbitrary code execution by opening a specially crafted SCS project files.

8.8

CVE-2019-18251

  • EPSS 0.26%
  • Veröffentlicht 26.11.2019 00:15:11
  • Zuletzt bearbeitet 21.11.2024 04:32:55

In Omron CX-Supervisor, Versions 3.5 (12) and prior, Omron CX-Supervisor ships with Teamviewer Version 5.0.8703 QS. This version of Teamviewer is vulnerable to an obsolete function vulnerability requiring user interaction to exploit.

5

CVE-2018-19020

  • EPSS 0.15%
  • Veröffentlicht 12.02.2019 22:29:00
  • Zuletzt bearbeitet 21.11.2024 03:57:10

When CX-Supervisor (Versions 3.42 and prior) processes project files and tampers with the value of an offset, an attacker can force the application to read a value outside of an array.

7.3

CVE-2018-19018

  • EPSS 0.23%
  • Veröffentlicht 12.02.2019 22:29:00
  • Zuletzt bearbeitet 21.11.2024 03:57:10

An access of uninitialized pointer vulnerability in CX-Supervisor (Versions 3.42 and prior) could lead to type confusion when processing project files. An attacker could use a specially crafted project file to exploit and execute code under the privi...

7.3

CVE-2018-19015

  • EPSS 0.17%
  • Veröffentlicht 28.01.2019 19:29:00
  • Zuletzt bearbeitet 21.11.2024 03:57:10

An attacker could inject commands to launch programs and create, write, and read files on CX-Supervisor (Versions 3.42 and prior) through a specially crafted project file. An attacker could exploit this to execute code under the privileges of the app...

7.3

CVE-2018-19019

  • EPSS 0.18%
  • Veröffentlicht 22.01.2019 20:29:01
  • Zuletzt bearbeitet 21.11.2024 03:57:10

A type confusion vulnerability exists when processing project files in CX-Supervisor (Versions 3.42 and prior). An attacker could use a specially crafted project file to exploit and execute code under the privileges of the application.

8.8

CVE-2018-19017

  • EPSS 0.54%
  • Veröffentlicht 22.01.2019 20:29:00
  • Zuletzt bearbeitet 21.11.2024 03:57:10

Several use after free vulnerabilities have been identified in CX-Supervisor (Versions 3.42 and prior). When processing project files, the application fails to check if it is referencing freed memory. An attacker could use a specially crafted project...

5

CVE-2018-19013

  • EPSS 0.09%
  • Veröffentlicht 22.01.2019 20:29:00
  • Zuletzt bearbeitet 21.11.2024 03:57:09

An attacker could inject commands to delete files and/or delete the contents of a file on CX-Supervisor (Versions 3.42 and prior) through a specially crafted project file.

8.8

CVE-2018-19011

  • EPSS 0.51%
  • Veröffentlicht 22.01.2019 20:29:00
  • Zuletzt bearbeitet 21.11.2024 03:57:09

CX-Supervisor (Versions 3.42 and prior) can execute code that has been injected into a project file. An attacker could exploit this to execute code under the privileges of the application.

7.8

CVE-2018-17913

  • EPSS 0.19%
  • Veröffentlicht 05.11.2018 23:29:00
  • Zuletzt bearbeitet 21.11.2024 03:55:11

A type confusion vulnerability exists when processing project files in Omron CX-Supervisor Versions 3.4.1.0 and prior, which may allow an attacker to execute code in the context of the application.