SCADA Vulnerabilities & Exposures (SVE)

CRITIFENCE® SCADA Vulnerabilities and Exposures Database (SVE)

[SVE-442044603] Omron CX-Supervisor

Date Type Platform Author EDB-ID CVE-ID OSVDB-ID Download App SIS Signature
2018-03-13OtherOmronrgod working with Trend Micro’s Zero Day Initiative reported these vulnerabilities to NCCIC.N/ACVE-2018-7513 CVE-2018-7521 CVE-2018-7515 CVE-2018-7523 CVE-2018N/AN/AN/A

Source

						
							
								
#
# Omron CX-Supervisor
#


### VULNERABLE VENDOR
Omron


### VULNERABLE PRODUCT
CX-Supervisor 


### RESEARCHER
rgod working with Trend Micro’s Zero Day Initiative reported these vulnerabilities to NCCIC.


### AFFECTED PRODUCTS
The following versions of CX-Supervisor are affected:

CX-Supervisor Versions 3.30 and prior


### IMPACT
Successful exploitation of these vulnerabilities could allow remote code execution.


### VULNERABILITY OVERVIEW
STACK-BASED BUFFER OVERFLOW CWE-121
Parsing malformed project files may cause a stack-based buffer overflow.
CVE-2018-7513 has been assigned to this vulnerability.
A CVSS v3 base score of 5.3 has been calculated; the CVSS vector string is (AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L)


USE AFTER FREE CWE-416
Use after free vulnerabilities can be exploited when CX Supervisor parses a specially crafted project file.
CVE-2018-7521 has been assigned to this vulnerability.
A CVSS v3 base score of 5.3 has been calculated; the CVSS vector string is (AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L)


ACCESS OF UNINITIALIZED POINTER CWE-824
Access of uninitialized pointer vulnerabilities can be exploited when CX Supervisor indirectly calls an initialized pointer when parsing malformed packets.
CVE-2018-7515 has been assigned to this vulnerability.
A CVSS v3 base score of 5.3 has been calculated; the CVSS vector string is (AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L)


DOUBLE FREE CWE-415
Parsing malformed project files may cause a double free vulnerability.
CVE-2018-7523 has been assigned to this vulnerability.
A CVSS v3 base score of 5.3 has been calculated; the CVSS vector string is (AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L)


OUT-OF-BOUNDS WRITE CWE-787
Parsing malformed project files may cause an out of bounds vulnerability.
CVE-2018-7517 has been assigned to this vulnerability.
A CVSS v3 base score of 5.3 has been calculated; the CVSS vector string is (AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L)


UNTRUSTED POINTER DEREFERENCE CWE-822
Processing a malformed packet by a certain executable may cause an untrusted pointer dereference vulnerability.
CVE-2018-7525 has been assigned to this vulnerability.
A CVSS v3 base score of 5.3 has been calculated; the CVSS vector string is (AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L)


HEAP-BASED BUFFER OVERFLOW CWE-122
Parsing malformed project files may cause a heap-based buffer overflow.
CVE-2018-7519 has been assigned to this vulnerability.
A CVSS v3 base score of 5.3 has been calculated; the CVSS vector string is (AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L)





### BACKGROUND
Critical Infrastructure Sector: Energy
Countries/Areas Deployed: Worldwide
Company Headquarters Location: Japan




### MITIGATION

Omron has released a version 3.4.1 of CX-Supervisor to address the reported vulnerabilities. Users can download the latest version of CX-Supervisor at the following location:

https://www.myomron.com/index.php?action=kb&article=1707