CVE-2022-21137

Omron CX-One Versions 4.60 and prior are vulnerable to a stack-based buffer overflow while processing specific project files, which may allow an attacker to execute arbitrary code.
References
Link Resource
https://www.cisa.gov/uscert/ics/advisories/icsa-22-006-01 Third Party Advisory US Government Resource
https://www.zerodayinitiative.com/advisories/ZDI-22-373/ Third Party Advisory VDB Entry
https://www.zerodayinitiative.com/advisories/ZDI-22-374/ Third Party Advisory VDB Entry
Configurations

Configuration 1 (hide)

cpe:2.3:a:omron:cx-one:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2022-01-14 20:15

Updated : 2024-02-28 18:48


NVD link : CVE-2022-21137

Mitre link : CVE-2022-21137

CVE.ORG link : CVE-2022-21137


JSON object : View

Products Affected

omron

  • cx-one
CWE
CWE-787

Out-of-bounds Write

CWE-121

Stack-based Buffer Overflow