← Back to home
ICSA-19-346-03  ·  Published 2019-12-12  ·  View on CISA ICS-CERT ↗

Omron PLC CJ, CS and NJ Series

CVSS 6.5 MEDIUM

Risk Summary

Successful exploitation of this vulnerability could allow an attacker to brute force login credentials, obtain unauthorized access of the system, and may allow an attacker unauthorized access to the FTP interface.

CVEs (1)

Remediations

  • Filter FTP port: Protect access to Omron's PLC with a firewall and block unnecessary remote access to FTP port (default: 21).
  • Filter IP addresses: Protect access to Omron's PLC with a firewall and filtering devices connected to the PLC by IP address.
  • Ensure the use of strong passwords.
  • For more information provided by Omron on these vulnerabilities refer to this Omron report.

Affected Vendors

Omron

Affected Products (3)

Omron · Omron PLC NJ series vers:all/*
Omron · Omron PLC CS series vers:all/*
Omron · Omron PLC CJ series vers:all/*

Affected Sectors

Critical Manufacturing

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more