ICSA-18-290-01 · Published 2019-01-31 · View on CISA ICS-CERT ↗

Omron CX-Supervisor (Update A)

CVSS 7.0 HIGH

Risk Summary

Successful exploitation of these vulnerabilities could allow an attacker to execute code under the context of the application, corrupt objects, and force the application to read a value outside of an array.

CVEs (4)

CVE-2018-17905 CVE-2018-17907 CVE-2018-17909 CVE-2018-17913

Remediations

Omron has released Version 3.4.2 of CX-Supervisor to address the reported vulnerabilities.

Affected Vendors

Omron

Affected Products (1)

Omron · CX-Supervisor <= 3.4.1.0

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more