CVE-2018-8834

Parsing malformed project files in Omron CX-One versions 4.42 and prior, including the following applications: CX-FLnet versions 1.00 and prior, CX-Protocol versions 1.992 and prior, CX-Programmer versions 9.65 and prior, CX-Server versions 5.0.22 and prior, Network Configurator versions 3.63 and prior, and Switch Box Utility versions 1.68 and prior, may cause a heap-based buffer overflow.
References
Link Resource
https://ics-cert.us-cert.gov/advisories/ICSA-18-100-02 Third Party Advisory US Government Resource
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

OR cpe:2.3:a:omron:switch_box_utility:*:*:*:*:*:*:*:*
cpe:2.3:a:omron:network_configurator:*:*:*:*:*:*:*:*
cpe:2.3:a:omron:cx-server:*:*:*:*:*:*:*:*
cpe:2.3:a:omron:cx-protocol:*:*:*:*:*:*:*:*
cpe:2.3:a:omron:cx-one:*:*:*:*:*:*:*:*
cpe:2.3:a:omron:cx-programmer:*:*:*:*:*:*:*:*
cpe:2.3:a:omron:cx-flnet:*:*:*:*:*:*:*:*

Information

Published : 2018-04-17 12:29

Updated : 2020-09-29 12:10


NVD link : CVE-2018-8834

Mitre link : CVE-2018-8834


JSON object : View

CWE
CWE-787

Out-of-bounds Write

Advertisement

dedicated server usa

Products Affected

omron

  • cx-protocol
  • cx-programmer
  • switch_box_utility
  • cx-server
  • network_configurator
  • cx-flnet
  • cx-one