high
8.1
CWE
294
Advisory Published
Updated

CVE-2022-33208

First published: Mon Jul 04 2022(Updated: )

Authentication bypass by capture-replay vulnerability exists in Machine automation controller NJ series all models V 1.48 and earlier, Machine automation controller NX7 series all models V1.28 and earlier, Machine automation controller NX1 series all models V1.48 and earlier, Automation software 'Sysmac Studio' all models V1.49 and earlier, and Programmable Terminal (PT) NA series NA5-15W/NA5-12W/NA5-9W/NA5-7W models Runtime V1.15 and earlier, which may allow a remote attacker who can analyze the communication between the affected controller and automation software 'Sysmac Studio' and/or a Programmable Terminal (PT) to access the controller.

Credit: vultures@jpcert.or.jp

Affected SoftwareAffected VersionHow to fix
Omron Nx701-1600 Firmware<=1.28
Omron Nx701-1600
Omron Nx701-1700 Firmware<=1.28
Omron Nx701-1700
Omron Nx701-z700 Firmware<=1.28
Omron Nx701-z700
Omron Nx701-z600 Firmware<=1.28
Omron Nx701-z600
Omron Nx701-1720 Firmware<=1.28
Omron Nx701-1720
Omron Nx701-1620 Firmware<=1.28
Omron Nx701-1620
Omron Nx102-1200 Firmware<=1.48
Omron Nx102-1200
Omron Nx102-1100 Firmware<=1.48
Omron Nx102-1100
Omron Nx102-1000 Firmware<=1.48
Omron Nx102-1000
Omron Nx102-1220 Firmware<=1.48
Omron Nx102-1220
Omron Nx102-1120 Firmware<=1.48
Omron Nx102-1120
Omron Nx102-1020 Firmware<=1.48
Omron Nx102-1020
Omron Nx102-9020 Firmware<=1.48
Omron Nx102-9020
Omron Nx1p2-1140dt Firmware<=1.48
Omron Nx1p2-1140dt
Omron Nx1p2-1140dt1 Firmware<=1.48
Omron Nx1p2-1140dt1
Omron Nx1p2-1040dt Firmware<=1.48
Omron Nx1p2-1040dt
Omron Nx1p2-1040dt1 Firmware<=1.48
Omron Nx1p2-1040dt1
Omron Nx1p2-9024dt Firmware<=1.48
Omron Nx1p2-9024dt
Omron Nx1p2-9024dt1 Firmware<=1.48
Omron Nx1p2-9024dt1
Omron Nx1w-cif01 Firmware<=1.48
Omron Nx1w-cif01
Omron Nx1w-cif11 Firmware<=1.48
Omron Nx1w-cif11
Omron Nx1w-cif12 Firmware<=1.48
Omron Nx1w-cif12
Omron Nx1w-adb21 Firmware<=1.48
Omron Nx1w-adb21
Omron Nx1w-dab21v Firmware<=1.48
Omron Nx1w-dab21v
Omron Nx1w-mab221 Firmware<=1.48
Omron Nx1w-mab221
Omron Nj501-1500 Firmware<=1.48
Omron Nj501-1500
Omron Nj501-140 Firmware<=1.48
Omron Nj501-140
Omron Nj501-1300 Firmware<=1.48
Omron Nj501-1300
Omron Nj501-r500 Firmware<=1.48
Omron Nj501-r500
Omron Nj501-r520 Firmware<=1.48
Omron Nj501-r520
Omron Nj501-r400 Firmware<=1.48
Omron Nj501-r400
Omron Nj501-r420 Firmware<=1.48
Omron Nj501-r420
Omron Nj501-r300 Firmware<=1.48
Omron Nj501-r300
Omron Nj501-r320 Firmware<=1.48
Omron Nj501-r320
Omron Nj501-5300 Firmware<=1.48
Omron Nj501-5300
Omron Nj501-1520 Firmware<=1.48
Omron Nj501-1520
Omron Nj501-1420 Firmware<=1.48
Omron Nj501-1420
Omron Nj501-1320 Firmware<=1.48
Omron Nj501-1320
Omron Nj101-1020 Firmware<=1.48
Omron Nj101-1020
Omron Nj101-9020 Firmware<=1.48
Omron Nj101-9020
Omron Nj501-1340 Firmware<=1.48
Omron Nj501-1340
Omron Nj501-4500 Firmware<=1.48
Omron Nj501-4500
Omron Nj501-4400 Firmware<=1.48
Omron Nj501-4400
Omron Nj501-4300 Firmware<=1.48
Omron Nj501-4300
Omron Nj501-4310 Firmware<=1.48
Omron Nj501-4310
Omron Nj501-4320 Firmware<=1.48
Omron Nj501-4320
Omron Nj301-1200 Firmware<1.48
Omron Nj301-1200
Omron Nj301-1100 Firmware<=1.48
Omron Nj301-1100
Omron Nj101-1000 Firmware<=1.48
Omron Nj101-1000
Omron Nj101-9000 Firmware<=1.48
Omron Nj101-9000
Omron Nj-pa3001 Firmware<=1.48
Omron Nj-pa3001
Omron Nj-pd3001 Firmware<=1.48
Omron Nj-pd3001
Omron Sysmac Studio<=1.49
Omron Na5-15w Firmware<=1.15
Omron Na5-15w
Omron Na5-12w Firmware<=1.15
Omron Na5-12w
Omron Na5-9w Firmware<=1.15
Omron Na5-9w
Omron Na5-7w Firmware<=1.15
Omron Na5-7w

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203