Omron

Cx-one

12 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2025-0591

  • EPSS 0.02%
  • Veröffentlicht 17.02.2025 00:15:08
  • Zuletzt bearbeitet 17.02.2025 00:15:08

Out-of-bounds Read vulnerability (CWE-125) was found in CX-Programmer. Attackers may be able to read sensitive information or cause an application crash by abusing this vulnerability.

7.8

CVE-2022-21137

  • EPSS 0.69%
  • Veröffentlicht 14.01.2022 20:15:15
  • Zuletzt bearbeitet 21.11.2024 06:43:58

Omron CX-One Versions 4.60 and prior are vulnerable to a stack-based buffer overflow while processing specific project files, which may allow an attacker to execute arbitrary code.

7.8

CVE-2021-27413

  • EPSS 0.79%
  • Veröffentlicht 13.05.2021 19:15:07
  • Zuletzt bearbeitet 21.11.2024 05:57:56

Omron CX-One Versions 4.60 and prior, including CX-Server Versions 5.0.29.0 and prior, are vulnerable to a stack-based buffer overflow, which may allow an attacker to execute arbitrary code.

8.8

CVE-2020-27259

  • EPSS 0.48%
  • Veröffentlicht 09.02.2021 15:15:13
  • Zuletzt bearbeitet 21.11.2024 05:20:57

The Omron CX-One Version 4.60 and prior may allow an attacker to supply a pointer to arbitrary memory locations, which may allow an attacker to remotely execute arbitrary code.

8.8

CVE-2020-27261

  • EPSS 1.25%
  • Veröffentlicht 09.02.2021 15:15:13
  • Zuletzt bearbeitet 21.11.2024 05:20:57

The Omron CX-One Version 4.60 and prior is vulnerable to a stack-based buffer overflow, which may allow an attacker to remotely execute arbitrary code.

7.8

CVE-2020-27257

  • EPSS 0.53%
  • Veröffentlicht 09.02.2021 15:15:12
  • Zuletzt bearbeitet 21.11.2024 05:20:57

This vulnerability allows local attackers to execute arbitrary code due to the lack of proper validation of user-supplied data, which can result in a type-confusion condition in the Omron CX-One Version 4.60 and prior devices.

7.8

CVE-2018-19027

  • EPSS 0.26%
  • Veröffentlicht 30.01.2019 16:29:00
  • Zuletzt bearbeitet 21.11.2024 03:57:11

Three type confusion vulnerabilities exist in CX-One Versions 4.50 and prior and CX-Protocol Versions 2.0 and prior when processing project files. An attacker could use a specially crafted project file to exploit and execute code under the privileges...

7.8

CVE-2018-18989

  • EPSS 0.19%
  • Veröffentlicht 04.12.2018 22:29:00
  • Zuletzt bearbeitet 21.11.2024 03:56:59

In CX-One Versions 4.42 and prior (CX-Programmer Versions 9.66 and prior and CX-Server Versions 5.0.23 and prior), when processing project files, the application fails to check if it is referencing freed memory. An attacker could use a specially craf...

7.8

CVE-2018-18993

  • EPSS 0.56%
  • Veröffentlicht 04.12.2018 22:29:00
  • Zuletzt bearbeitet 21.11.2024 03:57:00

Two stack-based buffer overflow vulnerabilities have been discovered in CX-One Versions 4.42 and prior (CX-Programmer Versions 9.66 and prior and CX-Server Versions 5.0.23 and prior). When processing project files, the application allows input data t...

7.8

CVE-2018-7514

  • EPSS 0.11%
  • Veröffentlicht 17.04.2018 19:29:00
  • Zuletzt bearbeitet 21.11.2024 04:12:16

Parsing malformed project files in Omron CX-One versions 4.42 and prior, including the following applications: CX-FLnet versions 1.00 and prior, CX-Protocol versions 1.992 and prior, CX-Programmer versions 9.65 and prior, CX-Server versions 5.0.22 an...