HIGH🇵🇱 Wersja polska

CVE-2018-7530

CVSS 7.8v3.0pub. 2018-04-17upd. 2024-11-21

Parsing malformed project files in Omron CX-One versions 4.42 and prior, including the following applications: CX-FLnet versions 1.00 and prior, CX-Protocol versions 1.992 and prior, CX-Programmer versions 9.65 and prior, CX-Server versions 5.0.22 and prior, Network Configurator versions 3.63 and prior, and Switch Box Utility versions 1.68 and prior, may allow the pointer to call an incorrect object resulting in an access of resource using incompatible type condition.

CVSS Vector
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
  • Omron Cx Flnet

    APP
    Omron
    ≤ 1.00
  • Omron Cx One

    APP
    Omron
    ≤ 4.42
  • Omron Cx Programmer

    APP
    Omron
    ≤ 9.65
  • Omron Cx Protocol

    APP
    Omron
    ≤ 1.992
  • Omron Cx Server

    APP
    Omron
    ≤ 5.0.22
  • Omron Network Configurator

    APP
    Omron
    ≤ 3.63
  • Omron Switch Box Utility

    APP
    Omron
    ≤ 1.68
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2015-0987CRITICAL10.0ten sam produkt

Omron CX-One CX-Programmer before 9.6, CJ2M PLC devices before 2.1, and CJ2H PLC devices before 1.5 rely on cl...

CVE-2023-22317HIGH7.8ten sam produkt

Use after free vulnerability exists in CX-Programmer Ver.9.79 and earlier. By having a user open a specially c...

CVE-2023-22314HIGH7.8ten sam produkt

Use after free vulnerability exists in CX-Programmer Ver.9.79 and earlier. By having a user open a specially c...

CVE-2023-22277HIGH7.8ten sam produkt

Use after free vulnerability exists in CX-Programmer Ver.9.79 and earlier. By having a user open a specially c...

CVE-2023-38746HIGH7.8ten sam produkt

Out-of-bounds read vulnerability/issue exists in CX-Programmer Included in CX-One CXONE-AL[][]D-V4 V9.80 and e...