CVE-2022-33208
First published: Mon Jul 04 2022(Updated: )
Authentication bypass by capture-replay vulnerability exists in Machine automation controller NJ series all models V 1.48 and earlier, Machine automation controller NX7 series all models V1.28 and earlier, Machine automation controller NX1 series all models V1.48 and earlier, Automation software 'Sysmac Studio' all models V1.49 and earlier, and Programmable Terminal (PT) NA series NA5-15W/NA5-12W/NA5-9W/NA5-7W models Runtime V1.15 and earlier, which may allow a remote attacker who can analyze the communication between the affected controller and automation software 'Sysmac Studio' and/or a Programmable Terminal (PT) to access the controller.
Credit: vultures@jpcert.or.jp
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Omron NX701-1600 | <=1.28 | |
| Omron NX701-1600 | ||
| Omron Nx701-1700 | <=1.28 | |
| Omron NX701-1700 Firmware | ||
| Omron Nx701-Z700 | <=1.28 | |
| Omron NX701-Z700 | ||
| Omron NX701-Z600 Firmware | <=1.28 | |
| Omron Nx701-z600 Firmware | ||
| Omron NX701-1720 Firmware | <=1.28 | |
| Omron NX701-1720 Firmware | ||
| Omron Nx701-1620 Firmware | <=1.28 | |
| Omron Nx701-1620 Firmware | ||
| Omron NX102 Firmware | <=1.48 | |
| Omron Nx102-1200 Firmware | ||
| Omron Nx102-1100 | <=1.48 | |
| Omron NX102 Firmware | ||
| Omron NX102 Firmware | <=1.48 | |
| Omron NX102 | ||
| Omron NX102 Firmware | <=1.48 | |
| Omron Nx102-1220 Firmware | ||
| Omron Nx102-1120 | <=1.48 | |
| Omron NX102-1120 Firmware | ||
| Omron NX102 Firmware | <=1.48 | |
| Omron NX102 Firmware | ||
| Omron NX102 Firmware | <=1.48 | |
| Omron Nx102-9020 Firmware | ||
| Omron Nx1p2-1140dt1 Firmware | <=1.48 | |
| Omron Nx1P2-1140DT1 | ||
| Omron Nx1P2-1140DT1 | <=1.48 | |
| Omron Nx1p2-1140dt1 Firmware | ||
| Omron NX1P2-1040DT1 Firmware | <=1.48 | |
| Omron Nx1p2-1040dt Firmware | ||
| Omron NX1P2-1040DT1 Firmware | <=1.48 | |
| Omron NX1P2-1040DT1 Firmware | ||
| Omron NX1P2-9024DT1 Firmware | <=1.48 | |
| Omron Nx1p2-9024dt1 Firmware | ||
| Omron NX1P2-9024DT1 | <=1.48 | |
| Omron NX1P2-9024DT1 Firmware | ||
| Omron NX1W-CIF01 | <=1.48 | |
| Omron NX1W-CIF01 Firmware | ||
| Omron Nx1w-cif11 | <=1.48 | |
| Omron NX1W-CIF11 | ||
| Omron NX1W-CIF12 | <=1.48 | |
| Omron NX1W-CIF12 Firmware | ||
| Omron NX1W-ADB21 | <=1.48 | |
| Omron NX1W-ADB21 | ||
| Omron NX1W-DAB21V | <=1.48 | |
| Omron NX1W-DAB21V | ||
| Omron NX1W-MAB221 | <=1.48 | |
| Omron NX1W-MAB221 | ||
| Omron NJ501-1500 Firmware | <=1.48 | |
| Omron Nj501-1500 Firmware | ||
| Omron NJ501-140 Firmware | <=1.48 | |
| Omron NJ501-140 Firmware | ||
| Omron NJ501-1300 Firmware | <=1.48 | |
| Omron NJ501-1300 Firmware | ||
| Omron NJ501-R500 Firmware | <=1.48 | |
| Omron NJ501-R500 Firmware | ||
| Omron NJ501-R520 | <=1.48 | |
| Omron NJ501-R520 Firmware | ||
| Omron NJ501-R400 Firmware | <=1.48 | |
| Omron Nj501-r400 Firmware | ||
| Omron NJ501-R420 Firmware | <=1.48 | |
| Omron NJ501-R420 Firmware | ||
| Omron NJ501-R300 Firmware | <=1.48 | |
| Omron NJ501-R300 Firmware | ||
| Omron NJ501-R320 Firmware | <=1.48 | |
| Omron Nj501-R320 Firmware | ||
| Omron Nj501-5300-1 Firmware | <=1.48 | |
| Omron NJ501-5300 Firmware | ||
| Omron NJ501-1520 Firmware | <=1.48 | |
| Omron Nj501-1520 Firmware | ||
| Omron NJ501-1420 Firmware | <=1.48 | |
| Omron NJ501-1420 Firmware | ||
| Omron NJ501-1320 | <=1.48 | |
| Omron NJ501-1320 | ||
| Omron NJ101-1020 Firmware | <=1.48 | |
| Omron NJ101-1020 Firmware | ||
| Omron PLC NJ Firmware | <=1.48 | |
| Omron NJ101-9020 | ||
| Omron NJ501-1340 Firmware | <=1.48 | |
| Omron Nj501-1340 Firmware | ||
| Omron NJ501-4500 Firmware | <=1.48 | |
| Omron NJ501-4500 Firmware | ||
| Omron Nj501-4400 Firmware | <=1.48 | |
| Omron Nj501-4400 Firmware | ||
| Omron NJ501-4300 Firmware | <=1.48 | |
| Omron NJ501-4300 Firmware | ||
| Omron NJ501-4310 Firmware | <=1.48 | |
| Omron NJ501-4310 Firmware | ||
| Omron NJ501-4320 Firmware | <=1.48 | |
| Omron NJ501-4320 Firmware | ||
| Omron NJ301-1200 | <1.48 | |
| Omron NJ301-1200 Firmware | ||
| Omron NJ301-1100 Firmware | <=1.48 | |
| Omron NJ301-1100 Firmware | ||
| Omron NJ101-1000 Firmware | <=1.48 | |
| Omron Nj101-1000 Firmware | ||
| Omron NJ101-9000 | <=1.48 | |
| Omron NJ101-9000 | ||
| Omron NJ-PA3001 Firmware | <=1.48 | |
| Omron NJ-PA3001 Firmware | ||
| Omron NJ-PD3001 | <=1.48 | |
| Omron Nj-pa3001 Firmware | ||
| Omron Automation Software Sysmac Studio | <=1.49 | |
| Omron Na5-15w | <=1.15 | |
| Omron NA5-15W | ||
| Omron Na5-12w | <=1.15 | |
| Omron Na5-12w Firmware | ||
| Omron Na5-9w | <=1.15 | |
| Omron Na5-9w Firmware | ||
| Omron NA5-7W Firmware | <=1.15 | |
| Omron NA5-7W Firmware |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What systems are affected by CVE-2022-33208?
CVE-2022-33208 affects various Omron Machine automation controllers including NJ series, NX7 series, NX1 series, and several firmware versions up to 1.48 and 1.28.
What is the nature of the vulnerability in CVE-2022-33208?
CVE-2022-33208 is an authentication bypass vulnerability that allows capture-replay attacks.
How can CVE-2022-33208 be mitigated or fixed?
To fix CVE-2022-33208, you should upgrade impacted devices to the latest firmware versions that address this vulnerability.
What is the risk associated with CVE-2022-33208?
The risk associated with CVE-2022-33208 includes unauthorized access to affected systems, which can lead to potential misuse of automation tasks.
Is there a security advisory available for CVE-2022-33208?
Yes, a security advisory regarding CVE-2022-33208 is available from Omron detailing the affected products and recommended actions.
- agent/references
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/last-modified-date
- agent/weakness
- agent/author
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/omron
- canonical/omron nx701-1600
- version/omron nx701-1600/1.28
- canonical/omron nx701-1700
- version/omron nx701-1700/1.28
- canonical/omron nx701-1700 firmware
- canonical/omron nx701-z700
- version/omron nx701-z700/1.28
- canonical/omron nx701-z600 firmware
- version/omron nx701-z600 firmware/1.28
- canonical/omron nx701-1720 firmware
- version/omron nx701-1720 firmware/1.28
- canonical/omron nx701-1620 firmware
- version/omron nx701-1620 firmware/1.28
- canonical/omron nx102 firmware
- version/omron nx102 firmware/1.48
- canonical/omron nx102-1200 firmware
- canonical/omron nx102-1100
- version/omron nx102-1100/1.48
- canonical/omron nx102
- canonical/omron nx102-1220 firmware
- canonical/omron nx102-1120
- version/omron nx102-1120/1.48
- canonical/omron nx102-1120 firmware
- canonical/omron nx102-9020 firmware
- canonical/omron nx1p2-1140dt1 firmware
- version/omron nx1p2-1140dt1 firmware/1.48
- canonical/omron nx1p2-1140dt1
- version/omron nx1p2-1140dt1/1.48
- canonical/omron nx1p2-1040dt1 firmware
- version/omron nx1p2-1040dt1 firmware/1.48
- canonical/omron nx1p2-1040dt firmware
- canonical/omron nx1p2-9024dt1 firmware
- version/omron nx1p2-9024dt1 firmware/1.48
- canonical/omron nx1p2-9024dt1
- version/omron nx1p2-9024dt1/1.48
- canonical/omron nx1w-cif01
- version/omron nx1w-cif01/1.48
- canonical/omron nx1w-cif01 firmware
- canonical/omron nx1w-cif11
- version/omron nx1w-cif11/1.48
- canonical/omron nx1w-cif12
- version/omron nx1w-cif12/1.48
- canonical/omron nx1w-cif12 firmware
- canonical/omron nx1w-adb21
- version/omron nx1w-adb21/1.48
- canonical/omron nx1w-dab21v
- version/omron nx1w-dab21v/1.48
- canonical/omron nx1w-mab221
- version/omron nx1w-mab221/1.48
- canonical/omron nj501-1500 firmware
- version/omron nj501-1500 firmware/1.48
- canonical/omron nj501-140 firmware
- version/omron nj501-140 firmware/1.48
- canonical/omron nj501-1300 firmware
- version/omron nj501-1300 firmware/1.48
- canonical/omron nj501-r500 firmware
- version/omron nj501-r500 firmware/1.48
- canonical/omron nj501-r520
- version/omron nj501-r520/1.48
- canonical/omron nj501-r520 firmware
- canonical/omron nj501-r400 firmware
- version/omron nj501-r400 firmware/1.48
- canonical/omron nj501-r420 firmware
- version/omron nj501-r420 firmware/1.48
- canonical/omron nj501-r300 firmware
- version/omron nj501-r300 firmware/1.48
- canonical/omron nj501-r320 firmware
- version/omron nj501-r320 firmware/1.48
- canonical/omron nj501-5300-1 firmware
- version/omron nj501-5300-1 firmware/1.48
- canonical/omron nj501-5300 firmware
- canonical/omron nj501-1520 firmware
- version/omron nj501-1520 firmware/1.48
- canonical/omron nj501-1420 firmware
- version/omron nj501-1420 firmware/1.48
- canonical/omron nj501-1320
- version/omron nj501-1320/1.48
- canonical/omron nj101-1020 firmware
- version/omron nj101-1020 firmware/1.48
- canonical/omron plc nj firmware
- version/omron plc nj firmware/1.48
- canonical/omron nj101-9020
- canonical/omron nj501-1340 firmware
- version/omron nj501-1340 firmware/1.48
- canonical/omron nj501-4500 firmware
- version/omron nj501-4500 firmware/1.48
- canonical/omron nj501-4400 firmware
- version/omron nj501-4400 firmware/1.48
- canonical/omron nj501-4300 firmware
- version/omron nj501-4300 firmware/1.48
- canonical/omron nj501-4310 firmware
- version/omron nj501-4310 firmware/1.48
- canonical/omron nj501-4320 firmware
- version/omron nj501-4320 firmware/1.48
- canonical/omron nj301-1200
- canonical/omron nj301-1200 firmware
- canonical/omron nj301-1100 firmware
- version/omron nj301-1100 firmware/1.48
- canonical/omron nj101-1000 firmware
- version/omron nj101-1000 firmware/1.48
- canonical/omron nj101-9000
- version/omron nj101-9000/1.48
- canonical/omron nj-pa3001 firmware
- version/omron nj-pa3001 firmware/1.48
- canonical/omron nj-pd3001
- version/omron nj-pd3001/1.48
- canonical/omron automation software sysmac studio
- version/omron automation software sysmac studio/1.49
- canonical/omron na5-15w
- version/omron na5-15w/1.15
- canonical/omron na5-12w
- version/omron na5-12w/1.15
- canonical/omron na5-12w firmware
- canonical/omron na5-9w
- version/omron na5-9w/1.15
- canonical/omron na5-9w firmware
- canonical/omron na5-7w firmware
- version/omron na5-7w firmware/1.15