Vulnerability Details CVE-2022-45790
The Omron FINS protocol has an authenticated feature to prevent access to memory regions. Authentication is susceptible to bruteforce attack, which may allow an adversary to gain access to protected memory. This access can allow overwrite of values including programmed logic.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 59.2%
CVSS Severity
CVSS v3 Score 8.6
References
- https://www.cisa.gov/news-events/ics-advisories/icsa-23-262-05
- https://www.dragos.com/advisory/omron-plc-and-engineering-software-network-and-file-format-access/
- https://www.fa.omron.co.jp/product/security/assets/pdf/en/OMSR-2023-010_en.pdf
- https://www.cisa.gov/news-events/ics-advisories/icsa-23-262-05
- https://www.dragos.com/advisory/omron-plc-and-engineering-software-network-and-file-format-access/
- https://www.fa.omron.co.jp/product/security/assets/pdf/en/OMSR-2023-010_en.pdf
Products affected by CVE-2022-45790
-
cpe:2.3:h:omron:cj1g-cpu42p:-
-
cpe:2.3:h:omron:cj1g-cpu43p:-
-
cpe:2.3:h:omron:cj1g-cpu44p:-
-
cpe:2.3:h:omron:cj1g-cpu45p-gtc:-
-
cpe:2.3:h:omron:cj1g-cpu45p:-
-
cpe:2.3:h:omron:cj2h-cpu64-eip:-
-
cpe:2.3:h:omron:cj2h-cpu64:-
-
cpe:2.3:h:omron:cj2h-cpu65-eip:-
-
cpe:2.3:h:omron:cj2h-cpu65:-
-
cpe:2.3:h:omron:cj2h-cpu66-eip:-
-
cpe:2.3:h:omron:cj2h-cpu66:-
-
cpe:2.3:h:omron:cj2h-cpu67-eip:-
-
cpe:2.3:h:omron:cj2h-cpu67:-
-
cpe:2.3:h:omron:cj2h-cpu68-eip:-
-
cpe:2.3:h:omron:cj2h-cpu68:-
-
cpe:2.3:h:omron:cj2m-cpu11:-
-
cpe:2.3:h:omron:cj2m-cpu12:-
-
cpe:2.3:h:omron:cj2m-cpu13:-
-
cpe:2.3:h:omron:cj2m-cpu14:-
-
cpe:2.3:h:omron:cj2m-cpu15:-
-
cpe:2.3:h:omron:cj2m-cpu31:-
-
cpe:2.3:h:omron:cj2m-cpu32:-
-
cpe:2.3:h:omron:cj2m-cpu33:-
-
cpe:2.3:h:omron:cj2m-cpu34:-
-
cpe:2.3:h:omron:cj2m-cpu35:-
-
cpe:2.3:h:omron:cj2m-md211:-
-
cpe:2.3:h:omron:cj2m-md212:-
-
cpe:2.3:h:omron:cp1e-e:-
-
cpe:2.3:h:omron:cp1e-n:-
-
cpe:2.3:h:omron:cs1d-cpu42s:-
-
cpe:2.3:h:omron:cs1d-cpu44s:-
-
cpe:2.3:h:omron:cs1d-cpu65h:-
-
cpe:2.3:h:omron:cs1d-cpu65p:-
-
cpe:2.3:h:omron:cs1d-cpu65s:-
-
cpe:2.3:h:omron:cs1d-cpu67h:-
-
cpe:2.3:h:omron:cs1d-cpu67p:-
-
cpe:2.3:h:omron:cs1d-cpu67s:-
-
cpe:2.3:h:omron:cs1g-cpu42h:-
-
cpe:2.3:h:omron:cs1g-cpu43h:-
-
cpe:2.3:h:omron:cs1g-cpu44h:-
-
cpe:2.3:h:omron:cs1g-cpu45h:-
-
cpe:2.3:h:omron:cs1h-cpu63h:-
-
cpe:2.3:h:omron:cs1h-cpu64h:-
-
cpe:2.3:h:omron:cs1h-cpu65h:-
-
cpe:2.3:h:omron:cs1h-cpu66h:-
-
cpe:2.3:h:omron:cs1h-cpu67h:-
-
cpe:2.3:o:omron:cj1g-cpu42p_firmware:-
-
cpe:2.3:o:omron:cj1g-cpu43p_firmware:-
-
cpe:2.3:o:omron:cj1g-cpu44p_firmware:-
-
cpe:2.3:o:omron:cj1g-cpu45p-gtc_firmware:-
-
cpe:2.3:o:omron:cj1g-cpu45p_firmware:-
-
cpe:2.3:o:omron:cj2h-cpu64-eip_firmware:-
-
cpe:2.3:o:omron:cj2h-cpu64_firmware:-
-
cpe:2.3:o:omron:cj2h-cpu65-eip_firmware:-
-
cpe:2.3:o:omron:cj2h-cpu65_firmware:-
-
cpe:2.3:o:omron:cj2h-cpu66-eip_firmware:-
-
cpe:2.3:o:omron:cj2h-cpu66_firmware:-
-
cpe:2.3:o:omron:cj2h-cpu67-eip_firmware:-
-
cpe:2.3:o:omron:cj2h-cpu67_firmware:-
-
cpe:2.3:o:omron:cj2h-cpu68-eip_firmware:-
-
cpe:2.3:o:omron:cj2h-cpu68_firmware:-
-
cpe:2.3:o:omron:cj2m-cpu11_firmware:-
-
cpe:2.3:o:omron:cj2m-cpu12_firmware:-
-
cpe:2.3:o:omron:cj2m-cpu13_firmware:-
-
cpe:2.3:o:omron:cj2m-cpu14_firmware:-
-
cpe:2.3:o:omron:cj2m-cpu15_firmware:-
-
cpe:2.3:o:omron:cj2m-cpu31_firmware:-
-
cpe:2.3:o:omron:cj2m-cpu32_firmware:-
-
cpe:2.3:o:omron:cj2m-cpu33_firmware:-
-
cpe:2.3:o:omron:cj2m-cpu34_firmware:-
-
cpe:2.3:o:omron:cj2m-cpu35_firmware:-
-
cpe:2.3:o:omron:cj2m-md211_firmware:-
-
cpe:2.3:o:omron:cj2m-md212_firmware:-
-
cpe:2.3:o:omron:cp1e-e_firmware:-
-
cpe:2.3:o:omron:cp1e-n_firmware:-
-
cpe:2.3:o:omron:cs1d-cpu42s_firmware:-
-
cpe:2.3:o:omron:cs1d-cpu44s_firmware:-
-
cpe:2.3:o:omron:cs1d-cpu65h_firmware:-
-
cpe:2.3:o:omron:cs1d-cpu65p_firmware:-
-
cpe:2.3:o:omron:cs1d-cpu65s_firmware:-
-
cpe:2.3:o:omron:cs1d-cpu67h_firmware:-
-
cpe:2.3:o:omron:cs1d-cpu67p_firmware:-
-
cpe:2.3:o:omron:cs1d-cpu67s_firmware:-
-
cpe:2.3:o:omron:cs1g-cpu42h_firmware:-
-
cpe:2.3:o:omron:cs1g-cpu43h_firmware:-
-
cpe:2.3:o:omron:cs1g-cpu44h_firmware:-
-
cpe:2.3:o:omron:cs1g-cpu45h_firmware:-
-
cpe:2.3:o:omron:cs1h-cpu63h_firmware:-
-
cpe:2.3:o:omron:cs1h-cpu64h_firmware:-
-
cpe:2.3:o:omron:cs1h-cpu65h_firmware:-
-
cpe:2.3:o:omron:cs1h-cpu66h_firmware:-
-
cpe:2.3:o:omron:cs1h-cpu67h_firmware:-