Lucene search
IcscertCVELIST:CVE-2022-21137HistoryJan 14, 2022 - 7:10 p.m.
CVE-2022-21137 Omron CX-One
2022-01-1419:10:44
CWE-121
icscert
www.cve.org
4
omron cx-one
stack-based buffer overflow
arbitrary code execution
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
0.085
Percentile
94.5%
Omron CX-One Versions 4.60 and prior are vulnerable to a stack-based buffer overflow while processing specific project files, which may allow an attacker to execute arbitrary code.
CNA Affected
[
{
"product": "CX-One",
"vendor": "Omron",
"versions": [
{
"lessThanOrEqual": "4.60",
"status": "affected",
"version": "All",
"versionType": "custom"
}
]
}
]Related
checkpoint_advisories
checkpoint_advisories
OMRON CX-One Buffer Overflow (CVE-2022-21137)
2022-10-31 00:00:00
ics
ics
Omron CX-One
2022-01-06 12:00:00
zdi
zdi
prion
prion
Stack overflow
2022-01-14 20:15:00
cve
cve
CVE-2022-21137
2022-01-14 20:15:15
cnvd
cnvd
Omron CX-One Buffer Overflow Vulnerability (CNVD-2022-04998)
2022-01-07 00:00:00
nvd
nvd
CVE-2022-21137
2022-01-14 20:15:15
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
0.085
Percentile
94.5%
Related for CVELIST:CVE-2022-21137