Vulnerabilities (CVE)

Vendor filter

Omron Subscribe

Product filter

Cx-supervisor Subscribe

Filter

17 total CVE
CVE Vendors Products Updated CVSS
CVE-2018-7525 1 Omron 1 Cx-supervisor 2019-10-09 4.6
In Omron CX-Supervisor Versions 3.30 and prior, processing a malformed packet by a certain executable may cause an untrusted pointer dereference vulnerability.
CVE-2018-7523 1 Omron 1 Cx-supervisor 2019-10-09 4.6
In Omron CX-Supervisor Versions 3.30 and prior, parsing malformed project files may cause a double free vulnerability.
CVE-2018-7521 1 Omron 1 Cx-supervisor 2019-10-09 4.6
In Omron CX-Supervisor Versions 3.30 and prior, use after free vulnerabilities can be exploited when CX Supervisor parses a specially crafted project file.
CVE-2018-7519 1 Omron 1 Cx-supervisor 2019-10-09 4.6
In Omron CX-Supervisor Versions 3.30 and prior, parsing malformed project files may cause a heap-based buffer overflow.
CVE-2018-7517 1 Omron 1 Cx-supervisor 2019-10-09 4.6
In Omron CX-Supervisor Versions 3.30 and prior, parsing malformed project files may cause an out of bounds vulnerability.
CVE-2018-7515 1 Omron 1 Cx-supervisor 2019-10-09 4.6
In Omron CX-Supervisor Versions 3.30 and prior, access of uninitialized pointer vulnerabilities can be exploited when CX Supervisor indirectly calls an initialized pointer when parsing malformed packets.
CVE-2018-7513 1 Omron 1 Cx-supervisor 2019-10-09 4.6
In Omron CX-Supervisor Versions 3.30 and prior, parsing malformed project files may cause a stack-based buffer overflow.
CVE-2018-19019 1 Omron 1 Cx-supervisor 2019-10-09 6.8
A type confusion vulnerability exists when processing project files in CX-Supervisor (Versions 3.42 and prior). An attacker could use a specially crafted project file to exploit and execute code under the privileges of the application.
CVE-2018-19018 1 Omron 1 Cx-supervisor 2019-10-09 6.0
An access of uninitialized pointer vulnerability in CX-Supervisor (Versions 3.42 and prior) could lead to type confusion when processing project files. An attacker could use a specially crafted project file to exploit and execute code under the...
CVE-2018-19017 1 Omron 1 Cx-supervisor 2019-10-09 6.8
Several use after free vulnerabilities have been identified in CX-Supervisor (Versions 3.42 and prior). When processing project files, the application fails to check if it is referencing freed memory. An attacker could use a specially crafted...
CVE-2018-19015 1 Omron 1 Cx-supervisor 2019-10-09 6.0
An attacker could inject commands to launch programs and create, write, and read files on CX-Supervisor (Versions 3.42 and prior) through a specially crafted project file. An attacker could exploit this to execute code under the privileges of the...
CVE-2018-19013 1 Omron 1 Cx-supervisor 2019-10-09 4.9
An attacker could inject commands to delete files and/or delete the contents of a file on CX-Supervisor (Versions 3.42 and prior) through a specially crafted project file.
CVE-2018-19011 1 Omron 1 Cx-supervisor 2019-10-09 6.8
CX-Supervisor (Versions 3.42 and prior) can execute code that has been injected into a project file. An attacker could exploit this to execute code under the privileges of the application.
CVE-2018-17913 1 Omron 1 Cx-supervisor 2019-10-09 6.8
A type confusion vulnerability exists when processing project files in Omron CX-Supervisor Versions 3.4.1.0 and prior, which may allow an attacker to execute code in the context of the application.
CVE-2018-17909 1 Omron 1 Cx-supervisor 2019-10-09 6.8
When processing project files in Omron CX-Supervisor Versions 3.4.1.0 and prior, the application fails to check if it is referencing freed memory, which may allow an attacker to execute code under the context of the application.
CVE-2018-17907 1 Omron 1 Cx-supervisor 2019-10-09 4.3
When processing project files in Omron CX-Supervisor Versions 3.4.1.0 and prior and tampering with the value of an offset, an attacker can force the application to read a value outside of an array.
CVE-2018-17905 1 Omron 1 Cx-supervisor 2019-10-09 6.8
When processing project files in Omron CX-Supervisor Versions 3.4.1.0 and prior and tampering with a specific byte, memory corruption may occur within a specific object.