CVE-2018-7525: Null Pointer Dereference
First published: Wed Mar 21 2018(Updated: )
In Omron CX-Supervisor Versions 3.30 and prior, processing a malformed packet by a certain executable may cause an untrusted pointer dereference vulnerability.
Credit: ics-cert@hq.dhs.gov
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Omron CX-Supervisor | <=3.30 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2018-7525?
CVE-2018-7525 is a vulnerability in Omron CX-Supervisor Versions 3.30 and prior that allows an attacker to cause an untrusted pointer dereference by processing a malformed packet.
What is the severity of CVE-2018-7525?
CVE-2018-7525 has a severity rating of 5.3, which is considered medium.
How does CVE-2018-7525 affect Omron CX-Supervisor?
CVE-2018-7525 affects Omron CX-Supervisor Versions 3.30 and prior.
How can an attacker exploit CVE-2018-7525?
An attacker can exploit CVE-2018-7525 by sending a specially crafted malformed packet to the affected Omron CX-Supervisor software.
Is there a fix for CVE-2018-7525?
Yes, to fix CVE-2018-7525, users should upgrade to a version of Omron CX-Supervisor that is later than 3.30.
- collector/nvd-index
- agent/author
- agent/severity
- agent/references
- agent/weakness
- agent/description
- agent/type
- agent/event
- agent/first-publish-date
- agent/softwarecombine
- agent/last-modified-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/omron
- canonical/omron cx-supervisor
- version/omron cx-supervisor/3.30