Omron has released an update through their Auto Update Service to fix the reported issues. Xina1i, working with Trend Micro’s Zero Day Initiative reported these vulnerabilities to CISA. CRITICAL INFRASTRUCTURE SECTORS: Critical Manufacturing.A CVSS v3 base score of 7.8 has been assigned the CVSS vector string is ( AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H). 3.2.3 OUT-OF-BOUNDS WRITE CWE-787ĬVE-2022-3397 has been assigned to this vulnerability. 3.2.2 OUT-OF-BOUNDS WRITE CWE-787ĬVE-2022-3396 has been assigned to this vulnerability.
The affected product is vulnerable to an Out-of-Bounds Write, which may allow an attacker to execute arbitrary code.ĬVE-2022-3398 has been assigned to this vulnerability. The following versions of CX-Programmer, part of a software automation suite, are affected:ģ.2 VULNERABILITY OVERVIEW 3.2.1 OUT-OF-BOUNDS WRITE CWE-787 Successful exploitation of these vulnerabilities could crash the device or may allow arbitrary code execution.
0 kommentar(er)
