Omron Omron

  1. Vendors
  2. Omron

Don't miss out!

Thousands of developers use stack.watch to stay informed.
Get an email whenever new security vulnerabilities are reported in any Omron product.

RSS Feeds for Omron security vulnerabilities

Create a CVE RSS feed including security vulnerabilities found in Omron products with stack.watch. Just hit watch, then grab your custom RSS feed url.

Products by Omron Sorted by Most Security Vulnerabilities since 2018

Omron Sysmac Studio4 vulnerabilities

Omron Cx Motion Mch Firmware1 vulnerability

Omron Cp1l El20dr D Firmware1 vulnerability

Omron Automation Software Sysmac Studio1 vulnerability

By the Year

In 2026 there have been 0 vulnerabilities in Omron. Omron did not have any published security vulnerabilities last year.




Year Vulnerabilities Average Score
2026 0 0.00
2025 0 0.00
2024 2 7.80
2023 10 7.77
2022 21 8.10
2021 5 8.30
2020 0 0.00
2019 16 7.11
2018 16 7.16

It may take a day or so for new Omron vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Omron Security Vulnerabilities

CVE Date Vulnerability Products
CVE-2022-45792 Jan 22, 2024
Directory Traversal via Malicious Project Files Project files may contain malicious contents which the software will use to create files on the filesystem. This allows directory traversal and overwriting files with the privileges of the logged-in user.
Sysmac Studio
CVE-2022-45793 Jan 10, 2024
Sysmac Studio Improper Directory Permissions Allow Privilege Escalation Sysmac Studio installs executables in a directory with poor permissions. This can allow a locally-authenticated attacker to overwrite files which will result in code execution with privileges of a different user.
Automation Software Sysmac Studio
Sysmac Studio
CVE-2023-22277 Aug 03, 2023
Use After Free in CX-Programmer <9.79 (CVE-2023-22277) Use after free vulnerability exists in CX-Programmer Ver.9.79 and earlier. By having a user open a specially crafted CXP file, information disclosure and/or arbitrary code execution may occur. This vulnerability is different from CVE-2023-22317 and CVE-2023-22314.
Cx Programmer
CVE-2023-22314 Aug 03, 2023
Use-After-Free in CX-Programmer <9.79 via CXP file leads to code exec Use after free vulnerability exists in CX-Programmer Ver.9.79 and earlier. By having a user open a specially crafted CXP file, information disclosure and/or arbitrary code execution may occur. This vulnerability is different from CVE-2023-22277 and CVE-2023-22317.
Cx Programmer
CVE-2023-22317 Aug 03, 2023
CX-Programmer UAF Before 9.79 Cypress (CVE-2023-22317) Use after free vulnerability exists in CX-Programmer Ver.9.79 and earlier. By having a user open a specially crafted CXP file, information disclosure and/or arbitrary code execution may occur. This vulnerability is different from CVE-2023-22277 and CVE-2023-22314.
Cx Programmer
CVE-2023-38747 Aug 03, 2023
CX-Programmer Heap Overflow CVE-2023-38747 (V9.80 or earlier) Heap-based buffer overflow vulnerability exists in CX-Programmer Included in CX-One CXONE-AL[][]D-V4 V9.80 and earlier. By having a user open a specially crafted CXP file, information disclosure and/or arbitrary code execution may occur.
Cx Programmer
CVE-2023-38748 Aug 03, 2023
Use-After-Free in CX-Programmer v9.80 and earlier (CX-One) Use after free vulnerability exists in CX-Programmer Included in CX-One CXONE-AL[][]D-V4 V9.80 and earlier. By having a user open a specially crafted CXP file, information disclosure and/or arbitrary code execution may occur.
Cx Programmer
CVE-2023-38746 Aug 03, 2023
CX-One V9.80 and earlier: OOB read in CX-Programmer enables info disclosure Out-of-bounds read vulnerability/issue exists in CX-Programmer Included in CX-One CXONE-AL[][]D-V4 V9.80 and earlier. By having a user open a specially crafted CXP file, information disclosure and/or arbitrary code execution may occur.
Cx Programmer
CVE-2023-27385 May 10, 2023
CX-Drive Heap Buffer Overflow via SDD File Handling Heap-based buffer overflow vulnerability exists in CX-Drive All models all versions. By having a user open a specially crafted SDD file, arbitrary code may be executed and/or information may be disclosed.
Cx Drive
CVE-2023-22322 Jan 30, 2023
XXE Vulnerability in OMRON CX-Motion Pro 1.4.6.013 Allows File Disclosure Improper restriction of XML external entity reference (XXE) vulnerability exists in OMRON CX-Motion Pro 1.4.6.013 and earlier. If a user opens a specially crafted project file created by an attacker, sensitive information in the file system where CX-Motion Pro is installed may be disclosed.
Cx Motion Pro
CVE-2023-22357 Jan 17, 2023
OMRON CP1L-EL20DR-D Debug Code Enables Remote AuthFree Code Execution Active debug code exists in OMRON CP1L-EL20DR-D all versions, which may lead to a command that is not specified in FINS protocol being executed without authentication. A remote unauthenticated attacker may read/write in arbitrary area of the device memory, which may lead to overwriting the firmware, causing a denial-of-service (DoS) condition, and/or arbitrary code execution.
Cp1l El20dr D Firmware
CVE-2023-22366 Jan 17, 2023
CX-Motion-MCH v2.32 & earlier: uninitialized pointer info disclosure CX-Motion-MCH v2.32 and earlier contains an access of uninitialized pointer vulnerability. Having a user to open a specially crafted project file may lead to information disclosure and/or arbitrary code execution.
Cx Motion Mch Firmware
CVE-2022-46282 Dec 21, 2022
Use-after-Free in CX-Drive V3.00 Enables Local Code Exec (CVE-2022-46282) Use after free vulnerability in CX-Drive V3.00 and earlier allows a local attacker to execute arbitrary code by having a user to open a specially crafted file,
Cx Drive
CVE-2022-43508 Dec 07, 2022
Use-after free in CX-Programmer <9.77 via crafted CXP file Use-after free vulnerability exists in CX-Programmer v.9.77 and earlier, which may lead to information disclosure and/or arbitrary code execution by having a user to open a specially crafted CXP file.
Cx Programmer
CVE-2022-43509 Dec 07, 2022
CX-Programmer <9.77: OOB write via crafted CXP file - info disclosure / code exec Out-of-bounds write vulnerability exists in CX-Programmer v.9.77 and earlier, which may lead to information disclosure and/or arbitrary code execution by having a user to open a specially crafted CXP file.
Cx Programmer
CVE-2022-43667 Dec 07, 2022
CX-Programmer <9.77 Buffer Overflow via CXP File Stack-based buffer overflow vulnerability exists in CX-Programmer v.9.77 and earlier, which may lead to information disclosure and/or arbitrary code execution by having a user to open a specially crafted CXP file.
Cx Programmer
CVE-2022-3396 Oct 06, 2022
OMRON CX-Programmer <=9.78 OOB Write (CVE-2022-3396) OMRON CX-Programmer 9.78 and prior is vulnerable to an Out-of-Bounds Write, which may allow an attacker to execute arbitrary code.
Cx Programmer
CVE-2022-3397 Oct 06, 2022
OMRON CX-Programmer <=9.78 OOB Write RCE in PLC Tool OMRON CX-Programmer 9.78 and prior is vulnerable to an Out-of-Bounds Write, which may allow an attacker to execute arbitrary code.
Cx Programmer
CVE-2022-3398 Oct 06, 2022
OMRON CX-Programmer 9.78 OOB Write Arbitrary Code Exec OMRON CX-Programmer 9.78 and prior is vulnerable to an Out-of-Bounds Write, which may allow an attacker to execute arbitrary code.
Cx Programmer
CVE-2022-2979 Sep 12, 2022
Microsoft Office MemRef Leak in Crafted File Arbitrary Code Exec Opening a specially crafted file could cause the affected product to fail to release its memory reference potentially resulting in arbitrary code execution.
Cx Programmer
CVE-2022-31204 Jul 26, 2022
Omron PLC cleartext password via FINS Program Area Protect Omron CS series, CJ series, and CP series PLCs through 2022-05-18 use cleartext passwords. They feature a UM Protection setting that allows users or system integrators to configure a password in order to restrict sensitive engineering operations (such as project/logic uploads and downloads). This password is set using the OMRON FINS command Program Area Protect and unset using the command Program Area Protect Clear, both of which are transmitted in cleartext.
Cx Programmer
CVE-2022-34151 Jul 04, 2022
Use of hard-coded credentials vulnerability exists in Machine automation controller NJ series all models V 1.48 and earlier, Machine automation controller NX7 series all models V1.28 and earlier, Machine automation controller NX1 series all models V1.48 and earlier, Automation software 'Sysmac Studio' all models V1.49 and earlier, and Programmable Terminal (PT) NA series NA5-15W/NA5-12W/NA5-9W/NA5-7W models Runtime V1.15 and earlier, which may Use of hard-coded credentials vulnerability exists in Machine automation controller NJ series all models V 1.48 and earlier, Machine automation controller NX7 series all models V1.28 and earlier, Machine automation controller NX1 series all models V1.48 and earlier, Automation software 'Sysmac Studio' all models V1.49 and earlier, and Programmable Terminal (PT) NA series NA5-15W/NA5-12W/NA5-9W/NA5-7W models Runtime V1.15 and earlier, which may allow a remote attacker who successfully obtained the user credentials by analyzing the affected product to access the controller.
Sysmac Studio
CVE-2022-33208 Jul 04, 2022
Authentication bypass by capture-replay vulnerability exists in Machine automation controller NJ series all models V 1.48 and earlier, Machine automation controller NX7 series all models V1.28 and earlier, Machine automation controller NX1 series all models V1.48 and earlier, Automation software 'Sysmac Studio' all models V1.49 and earlier, and Programmable Terminal (PT) NA series NA5-15W/NA5-12W/NA5-9W/NA5-7W models Runtime V1.15 and earlier, which may Authentication bypass by capture-replay vulnerability exists in Machine automation controller NJ series all models V 1.48 and earlier, Machine automation controller NX7 series all models V1.28 and earlier, Machine automation controller NX1 series all models V1.48 and earlier, Automation software 'Sysmac Studio' all models V1.49 and earlier, and Programmable Terminal (PT) NA series NA5-15W/NA5-12W/NA5-9W/NA5-7W models Runtime V1.15 and earlier, which may allow a remote attacker who can analyze the communication between the affected controller and automation software 'Sysmac Studio' and/or a Programmable Terminal (PT) to access the controller.
Sysmac Studio
CVE-2022-25959 Apr 01, 2022
Omron CX-Position (versions 2.5.3 and prior) is vulnerable to memory corruption while processing a specific project file, which may Omron CX-Position (versions 2.5.3 and prior) is vulnerable to memory corruption while processing a specific project file, which may allow an attacker to execute arbitrary code.
Cx Position
CVE-2022-26022 Apr 01, 2022
Omron CX-Position (versions 2.5.3 and prior) is vulnerable to an out-of-bounds write while processing a specific project file, which may Omron CX-Position (versions 2.5.3 and prior) is vulnerable to an out-of-bounds write while processing a specific project file, which may allow an attacker to execute arbitrary code.
Cx Position
CVE-2022-26417 Apr 01, 2022
Omron CX-Position (versions 2.5.3 and prior) is vulnerable to a use after free memory condition while processing a specific project file, which may Omron CX-Position (versions 2.5.3 and prior) is vulnerable to a use after free memory condition while processing a specific project file, which may allow an attacker to execute arbitrary code.
Cx Position
CVE-2022-26419 Apr 01, 2022
Omron CX-Position (versions 2.5.3 and prior) is vulnerable to multiple stack-based buffer overflow conditions while parsing a specific project file, which may Omron CX-Position (versions 2.5.3 and prior) is vulnerable to multiple stack-based buffer overflow conditions while parsing a specific project file, which may allow an attacker to locally execute arbitrary code.
Cx Position
CVE-2022-25230 Mar 10, 2022
Use after free vulnerability in CX-Programmer v9.76.1 and earlier which is a part of CX-One (v4.60) suite Use after free vulnerability in CX-Programmer v9.76.1 and earlier which is a part of CX-One (v4.60) suite allows an attacker to cause information disclosure and/or arbitrary code execution by having a user to open a specially crafted CXP file. This vulnerability is different from CVE-2022-25325.
Cx Programmer
CVE-2022-25234 Mar 10, 2022
Out-of-bounds write vulnerability in CX-Programmer v9.76.1 and earlier which is a part of CX-One (v4.60) suite Out-of-bounds write vulnerability in CX-Programmer v9.76.1 and earlier which is a part of CX-One (v4.60) suite allows an attacker to cause information disclosure and/or arbitrary code execution by having a user to open a specially crafted CXP file. This vulnerability is different from CVE-2022-21124.
Cx Programmer
CVE-2022-25325 Mar 10, 2022
Use after free vulnerability in CX-Programmer v9.76.1 and earlier which is a part of CX-One (v4.60) suite Use after free vulnerability in CX-Programmer v9.76.1 and earlier which is a part of CX-One (v4.60) suite allows an attacker to cause information disclosure and/or arbitrary code execution by having a user to open a specially crafted CXP file. This vulnerability is different from CVE-2022-25230.
Cx Programmer
CVE-2022-21124 Mar 10, 2022
Out-of-bounds write vulnerability in CX-Programmer v9.76.1 and earlier which is a part of CX-One (v4.60) suite Out-of-bounds write vulnerability in CX-Programmer v9.76.1 and earlier which is a part of CX-One (v4.60) suite allows an attacker to cause information disclosure and/or arbitrary code execution by having a user to open a specially crafted CXP file. This vulnerability is different from CVE-2022-25234.
Cx Programmer
CVE-2022-21219 Mar 10, 2022
Out-of-bounds read vulnerability in CX-Programmer v9.76.1 and earlier which is a part of CX-One (v4.60) suite Out-of-bounds read vulnerability in CX-Programmer v9.76.1 and earlier which is a part of CX-One (v4.60) suite allows an attacker to cause information disclosure and/or arbitrary code execution by having a user to open a specially crafted CXP file.
Cx Programmer
CVE-2022-21137 Jan 14, 2022
Omron CX-One Versions 4.60 and prior are vulnerable to a stack-based buffer overflow while processing specific project files, which may Omron CX-One Versions 4.60 and prior are vulnerable to a stack-based buffer overflow while processing specific project files, which may allow an attacker to execute arbitrary code.
Cx One
CVE-2021-20836 Oct 19, 2021
Out-of-bounds read vulnerability in CX-Supervisor v4.0.0.13 and v4.0.0.16 Out-of-bounds read vulnerability in CX-Supervisor v4.0.0.13 and v4.0.0.16 allows an attacker with administrative privileges to cause information disclosure and/or arbitrary code execution by opening a specially crafted SCS project files.
Cx Supervisor
CVE-2021-27413 May 13, 2021
Omron CX-One Versions 4.60 and prior, including CX-Server Versions 5.0.29.0 and prior, are vulnerable to a stack-based buffer overflow, which may Omron CX-One Versions 4.60 and prior, including CX-Server Versions 5.0.29.0 and prior, are vulnerable to a stack-based buffer overflow, which may allow an attacker to execute arbitrary code.
Cx One
Cx Server
CVE-2020-27261 Feb 09, 2021
The Omron CX-One Version 4.60 and prior is vulnerable to a stack-based buffer overflow, which may The Omron CX-One Version 4.60 and prior is vulnerable to a stack-based buffer overflow, which may allow an attacker to remotely execute arbitrary code.
Cx One
Cx Protocol
Cx Server
And others...
CVE-2020-27259 Feb 09, 2021
The Omron CX-One Version 4.60 and prior may The Omron CX-One Version 4.60 and prior may allow an attacker to supply a pointer to arbitrary memory locations, which may allow an attacker to remotely execute arbitrary code.
Cx One
Cx Protocol
Cx Server
And others...
CVE-2020-27257 Feb 09, 2021
This vulnerability allows local attackers to execute arbitrary code due to the lack of proper validation of user-supplied data This vulnerability allows local attackers to execute arbitrary code due to the lack of proper validation of user-supplied data, which can result in a type-confusion condition in the Omron CX-One Version 4.60 and prior devices.
Cx One
Cx Protocol
Cx Server
And others...
CVE-2019-18269 Dec 16, 2019
Omrons CS and CJ series PLCs have an unrestricted externally accessible lock vulnerability. Omrons CS and CJ series PLCs have an unrestricted externally accessible lock vulnerability.
Plc Cj Firmware
Plc Cs Firmware
CVE-2019-18261 Dec 16, 2019
In Omron PLC CS series In Omron PLC CS series, all versions, Omron PLC CJ series, all versions, and Omron PLC NJ series, all versions, the software does not implement sufficient measures to prevent multiple failed authentication attempts within in a short time frame, making it more susceptible to brute force attacks.
Plc Cj Firmware
Plc Cs Firmware
Plc Nj Firmware
And others...
CVE-2019-18259 Dec 16, 2019
In Omron PLC CJ series In Omron PLC CJ series, all versions and Omron PLC CS series, all versions, an attacker could spoof arbitrary messages or execute commands.
Plc Cj Firmware
Plc Cs Firmware
CVE-2019-13533 Dec 16, 2019
In Omron PLC CJ series, all versions, and Omron PLC CS series, all versions, an attacker could monitor traffic between the PLC and the controller and replay requests In Omron PLC CJ series, all versions, and Omron PLC CS series, all versions, an attacker could monitor traffic between the PLC and the controller and replay requests that could result in the opening and closing of industrial valves.
Plc Cj Firmware
Plc Cs Firmware
CVE-2019-18251 Nov 26, 2019
In Omron CX-Supervisor, Versions 3.5 (12) and prior, Omron CX-Supervisor ships with Teamviewer Version 5.0.8703 QS In Omron CX-Supervisor, Versions 3.5 (12) and prior, Omron CX-Supervisor ships with Teamviewer Version 5.0.8703 QS. This version of Teamviewer is vulnerable to an obsolete function vulnerability requiring user interaction to exploit.
Cx Supervisor
CVE-2019-10971 Jun 12, 2019
The application (Network Configurator for DeviceNet Safety 3.41 and prior) searches for resources by means of an untrusted search path The application (Network Configurator for DeviceNet Safety 3.41 and prior) searches for resources by means of an untrusted search path that could execute a malicious .dll file not under the application's direct control and outside the intended directories.
Network Configurator Devicenet Safety
CVE-2019-6556 Apr 10, 2019
When processing project files When processing project files, the application (Omron CX-Programmer v9.70 and prior and Common Components January 2019 and prior) fails to check if it is referencing freed memory. An attacker could use a specially crafted project file to exploit and execute code under the privileges of the application.
Common Components
Cx Programmer
CVE-2018-16207 Mar 27, 2019
PowerAct Pro Master Agent for Windows Version 5.13 and earlier PowerAct Pro Master Agent for Windows Version 5.13 and earlier allows authenticated attackers to bypass access restriction to alter or edit unauthorized files via unspecified vectors.
Poweract Pro Master Agent
CVE-2018-19020 Feb 12, 2019
When CX-Supervisor (Versions 3.42 and prior) processes project files and tampers with the value of an offset, an attacker When CX-Supervisor (Versions 3.42 and prior) processes project files and tampers with the value of an offset, an attacker can force the application to read a value outside of an array.
Cx Supervisor
CVE-2018-19018 Feb 12, 2019
An access of uninitialized pointer vulnerability in CX-Supervisor (Versions 3.42 and prior) could lead to type confusion when processing project files An access of uninitialized pointer vulnerability in CX-Supervisor (Versions 3.42 and prior) could lead to type confusion when processing project files. An attacker could use a specially crafted project file to exploit and execute code under the privileges of the application.
Cx Supervisor
CVE-2018-19027 Jan 30, 2019
Three type confusion vulnerabilities exist in CX-One Versions 4.50 and prior and CX-Protocol Versions 2.0 and prior when processing project files Three type confusion vulnerabilities exist in CX-One Versions 4.50 and prior and CX-Protocol Versions 2.0 and prior when processing project files. An attacker could use a specially crafted project file to exploit and execute code under the privileges of the application.
Cx One
Cx Protocol
CVE-2018-19015 Jan 28, 2019
An attacker could inject commands to launch programs and create An attacker could inject commands to launch programs and create, write, and read files on CX-Supervisor (Versions 3.42 and prior) through a specially crafted project file. An attacker could exploit this to execute code under the privileges of the application.
Cx Supervisor
Built by Foundeo Inc., with data from the National Vulnerability Database (NVD). Privacy Policy. Use of this site is governed by the Legal Terms
Disclaimer
CONTENT ON THIS WEBSITE IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. Always check with your vendor for the most up to date, and accurate information.