Vulnerability Details CVE-2022-21137
Omron CX-One Versions 4.60 and prior are vulnerable to a stack-based buffer overflow while processing specific project files, which may allow an attacker to execute arbitrary code.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 69.3%
CVSS Severity
CVSS v3 Score 7.8
CVSS v2 Score 6.8
References
- https://www.cisa.gov/uscert/ics/advisories/icsa-22-006-01
- https://www.zerodayinitiative.com/advisories/ZDI-22-373/
- https://www.zerodayinitiative.com/advisories/ZDI-22-374/
- https://www.cisa.gov/uscert/ics/advisories/icsa-22-006-01
- https://www.zerodayinitiative.com/advisories/ZDI-22-373/
- https://www.zerodayinitiative.com/advisories/ZDI-22-374/