Omron PLC and Engineering Software Network and File Format Access

CVE ID

CVE-2022-45790

CVE-2019-18269

CVE-2022-45792

CVE-2022-45793

CVE-2022-45794

CVE-2022-34151

CVE-2022-33971

CVE-2023-0811

Vunerability Type

Memory protection is vulnerable to brute force.

Memory protection may be set to non-ASCII characters

File formats vulnerable to Zip-Slip

Binaries are writable by low-privileged users

File transfer lacks authentication

Backdoor account with administrative privileges

Arbitrary code execution to an authenticated attacker

Unauthenticated user to set arbitrary passwords

CVSS3 Score

9.8

7.5

7.8

8.8

7.5

9.4

7.1

9.1

CVSSv3 Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H

AV:A/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H