Shodan
Vulnerabilities
Vulnerable Software
Omron:  >> Cx-Supervisor  >> 3.42  Security Vulnerabilities
CVE-2018-19018
An access of uninitialized pointer vulnerability in CX-Supervisor (Versions 3.42 and prior) could lead to type confusion when processing project files. An attacker could use a specially crafted project file to exploit and execute code under the privileges of the application.
CVSS Score
7.3
EPSS Score
0.002
Published
2019-02-12
CVE-2018-19020
When CX-Supervisor (Versions 3.42 and prior) processes project files and tampers with the value of an offset, an attacker can force the application to read a value outside of an array.
CVSS Score
5.0
EPSS Score
0.001
Published
2019-02-12
CVE-2018-19015
An attacker could inject commands to launch programs and create, write, and read files on CX-Supervisor (Versions 3.42 and prior) through a specially crafted project file. An attacker could exploit this to execute code under the privileges of the application.
CVSS Score
7.3
EPSS Score
0.002
Published
2019-01-28
CVE-2018-19019
A type confusion vulnerability exists when processing project files in CX-Supervisor (Versions 3.42 and prior). An attacker could use a specially crafted project file to exploit and execute code under the privileges of the application.
CVSS Score
7.3
EPSS Score
0.002
Published
2019-01-22
CVE-2018-19011
CX-Supervisor (Versions 3.42 and prior) can execute code that has been injected into a project file. An attacker could exploit this to execute code under the privileges of the application.
CVSS Score
8.8
EPSS Score
0.005
Published
2019-01-22
CVE-2018-19013
An attacker could inject commands to delete files and/or delete the contents of a file on CX-Supervisor (Versions 3.42 and prior) through a specially crafted project file.
CVSS Score
5.0
EPSS Score
0.001
Published
2019-01-22
CVE-2018-19017
Several use after free vulnerabilities have been identified in CX-Supervisor (Versions 3.42 and prior). When processing project files, the application fails to check if it is referencing freed memory. An attacker could use a specially crafted project file to exploit and execute code under the privileges of the application.
CVSS Score
8.8
EPSS Score
0.005
Published
2019-01-22


Products
Pricing
Contact Us

Shodan ® - All rights reserved