CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2018-17909

When processing project files in Omron CX-Supervisor Versions 3.4.1.0 and prior, the application fails to check if it is referencing freed memory, which may allow an attacker to execute code under the context of the application.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 41.5%

CVSS Severity

CVSS v3 Score 7.8

CVSS v2 Score 6.8

References

http://www.securityfocus.com/bid/105691
https://ics-cert.us-cert.gov/advisories/ICSA-18-290-01
http://www.securityfocus.com/bid/105691
https://ics-cert.us-cert.gov/advisories/ICSA-18-290-01

Products affected by CVE-2018-17909

Omron » Cx-Supervisor » Version: 3.0

cpe:2.3:a:omron:cx-supervisor:3.0
Omron » Cx-Supervisor » Version: 3.2

cpe:2.3:a:omron:cx-supervisor:3.2
Omron » Cx-Supervisor » Version: 3.3

cpe:2.3:a:omron:cx-supervisor:3.3
Omron » Cx-Supervisor » Version: 3.4

cpe:2.3:a:omron:cx-supervisor:3.4
Omron » Cx-Supervisor » Version: 3.4.1.0

cpe:2.3:a:omron:cx-supervisor:3.4.1.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-17909

Products

Pricing

Contact Us