CVE-2022-33971

Authentication bypass by capture-replay vulnerability exists in Machine automation controller NX7 series all models V1.28 and earlier, Machine automation controller NX1 series all models V1.48 and earlier, and Machine automation controller NJ series all models V 1.48 and earlier, which may allow an adjacent attacker who can analyze the communication between the controller and the specific software used by OMRON internally to cause a denial-of-service (DoS) condition or execute a malicious program.
References
Link Resource
https://www.ia.omron.com/product/vulnerability/OMSR-2022-002_en.pdf Mitigation Vendor Advisory
https://jvn.jp/en/vu/JVNVU97050784/index.html Third Party Advisory VDB Entry
Configurations

Configuration 1


Information

Published : 2022-07-04 02:15

Updated : 2022-07-15 05:12


NVD link : CVE-2022-33971

Mitre link : CVE-2022-33971

Products Affected
No products.
CWE
CWE-294

Authentication Bypass by Capture-replay