ICSA-15-274-01
·
Published 2025-06-09
·
View on CISA ICS-CERT ↗
Omron Multiple Product Vulnerabilities
CVSS 10.0
CRITICAL
CVEs (3)
Remediations
- Update to the latest software versions.
- The CX-Programmer software, version 9.6 or newer, is available by auto-update service or at the following URL. (https://industrial.omron.us/en/products/catalogue/automation_systems/software/programming/cx-one/default.html)
- The CJ2M series PLC, Version 2.1 or newer, and the CJ2H series PLC, Version 1.5 or newer, can be obtained by contacting Omron Corporation’s Customer Care Team. (https://industrial.omron.us/en/services-and-support/customer-care)
- Omron Corporation’s security notice is available at the following URL. (http://www.fa.omron.co.jp/product/special/security_plc/index.html)
Affected Vendors
Omron Corporation
Affected Products (3)
Omron Corporation
·
CX-Programmer software
<9.6
Omron Corporation
·
CJ2M Series PLC
<2.1
Omron Corporation
·
CJ2H Series PLC
<1.5
Get alerted to advisories like this
OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.
Start free trial Learn more