CVE-2022-45794: Omron CJ-series and CS-series unauthenticated filesystem access.
First published: Wed Jan 10 2024(Updated: )
An attacker with network access to the affected PLC (CJ-series and CS-series PLCs, all versions) may use a network protocol to read and write files on the PLC internal memory and memory card.
Credit: ot-cert@dragos.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| All of | ||
| Omron CJ2H-CPU64-EIP Firmware | ||
| Omron Sysmac CJ2H-CPU64-EIP Firmware | ||
| All of | ||
| Omron CJ2H-CPU64-EIP Firmware | ||
| Omron Sysmac CJ2H-CPU64 Firmware | ||
| All of | ||
| Omron Sysmac CJ2H-CPU68 | ||
| Omron CJ2H-CPU65-EIP | ||
| All of | ||
| Omron CJ2H-CPU65 Firmware | ||
| Omron Sysmac CJ2H-CPU65 Firmware | ||
| All of | ||
| Omron Sysmac CJ2H-CPU68 | ||
| Omron CJ2H-CPU66-EIP | ||
| All of | ||
| Omron Sysmac CJ2H Firmware | ||
| Omron Sysmac CJ2H-CPU66 Firmware | ||
| All of | ||
| Omron CJ2H-CPU67-EIP Firmware | ||
| Omron CJ2H-CPU67-EIP Firmware | ||
| All of | ||
| Omron CJ2H-CPU67 Firmware | ||
| Omron CJ2H-CPU67 Firmware | ||
| All of | ||
| Omron Sysmac CJ2H | ||
| Omron Sysmac CJ2H-CPU68-EIP Firmware | ||
| All of | ||
| Omron Sysmac CJ2H-CPU68-EIP Firmware | ||
| Omron CJ2H-CPU68 Firmware | ||
| All of | ||
| Omron CJ2M-CPU11 Firmware | ||
| Omron Sysmac CJ2M-CPU11 Firmware | ||
| All of | ||
| Omron CJ2M-CPU12 Firmware | ||
| Omron Sysmac CJ2M-CPU12 Firmware | ||
| All of | ||
| Omron CJ2M-CPU13 | ||
| Omron Sysmac CJ2M-CPU13 Firmware | ||
| All of | ||
| Omron Sysmac CJ2M-CPU14 Firmware | ||
| Omron Sysmac CJ2M-CPU14 Firmware | ||
| All of | ||
| Omron CJ2M-CPU15 | ||
| Omron Sysmac CJ2M-CPU15 Firmware | ||
| All of | ||
| Omron CJ2M-CPU31 Firmware | ||
| Omron Sysmac CJ2M-CPU31 Firmware | ||
| All of | ||
| Omron CJ2M-CPU32 Firmware | ||
| Omron Sysmac CJ2M-CPU32 Firmware | ||
| All of | ||
| Omron Sysmac CJ2M-CPU | ||
| Omron Sysmac CJ2M-CPU33 Firmware | ||
| All of | ||
| Omron Sysmac CJ2M-CPU34 | ||
| Omron Sysmac CJ2M-CPU34 Firmware | ||
| All of | ||
| Omron CJ2M-CPU35 Firmware | ||
| Omron Sysmac CJ2M-CPU35 Firmware | ||
| All of | ||
| Omron CJ1G-CPU45P | ||
| Omron Sysmac CJ1G-CPU45P Firmware | ||
| All of | ||
| Omron CJ1G-CPU44P Firmware | ||
| Omron Sysmac CJ1G-CPU44P Firmware | ||
| All of | ||
| Omron Sysmac CJ1G-CPU43P | ||
| Omron Sysmac CJ1G-CPU43P Firmware | ||
| All of | ||
| Omron Sysmac CJ1G-CPU42P | ||
| Omron Sysmac CJ1G-CPU42P Firmware | ||
| All of | ||
| Omron Sysmac CS1H-CPU63H Firmware | ||
| Omron Sysmac CS1H-CPU63H Firmware | ||
| All of | ||
| Omron Sysmac Cs1d-cpu65h | ||
| Omron Sysmac CS1H-CPU65H Firmware | ||
| All of | ||
| Omron Sysmac CS1H-CPU67H | ||
| Omron CS1H-CPU67H | ||
| All of | ||
| Omron CS1H-CPU64H Firmware | ||
| Omron Sysmac CS1H-CPU64H Firmware | ||
| All of | ||
| Omron CS1H-CPU66H Firmware | ||
| Omron Sysmac CS1H-CPU66H Firmware | ||
| All of | ||
| Omron Sysmac CS1G-CPU44H | ||
| Omron CS1G-CPU44H | ||
| All of | ||
| Omron Sysmac CS1G-CPU43H Firmware | ||
| Omron Sysmac CS1G-CPU43H Firmware | ||
| All of | ||
| Omron Sysmac CS1G-CPU42H | ||
| Omron Sysmac CS1G-CPU42H | ||
| All of | ||
| Omron CS1G-CPU45H Firmware | ||
| Omron Sysmac Cs1g-cpu45h Firmware | ||
| All of | ||
| Omron Sysmac CS1D-CPU65H | ||
| Omron CS1D-CPU65H Firmware | ||
| All of | ||
| Omron Sysmac CS1D-CPU67HA Firmware | ||
| Omron CS1D-CPU67H Firmware | ||
| All of | ||
| Omron Sysmac CS1D-CPU68HA Firmware | ||
| Omron Sysmac CS1D-CPU68HA Firmware | ||
| All of | ||
| Omron Sysmac CS1D-CPU67HA Firmware | ||
| Omron Sysmac CS1D-CPU67HA Firmware | ||
| All of | ||
| Omron Sysmac CS1D-CPU65P | ||
| Omron Sysmac CS1D-CPU65P Firmware | ||
| All of | ||
| Omron Sysmac Cs1d-cpu65h | ||
| Omron Sysmac CS1D-CPU67SA | ||
| All of | ||
| Omron Sysmac Cs1d-cpu65h | ||
| Omron Sysmac CS1D-CPU44SA Firmware | ||
| All of | ||
| Omron Sysmac CS1D-CPU67P | ||
| Omron CS1D-CPU67P |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2022-45794?
CVE-2022-45794 has been categorized as a critical vulnerability due to its potential to allow unauthorized access to PLC internal memory.
What devices are affected by CVE-2022-45794?
CVE-2022-45794 affects various Omron Sysmac CJ and CS series PLCs, including CJ2H, CJ2M, and CS1H models.
How can I mitigate CVE-2022-45794?
Mitigation for CVE-2022-45794 involves restricting network access to the affected PLCs and applying available firmware updates.
What kind of attack can exploit CVE-2022-45794?
CVE-2022-45794 can be exploited by attackers with network access through a protocol that allows reading and writing files on PLC memory.
Is there a fix available for CVE-2022-45794?
Yes, users should check for the latest firmware updates from Omron to address the vulnerabilities associated with CVE-2022-45794.
- agent/references
- agent/type
- agent/weakness
- agent/author
- agent/title
- agent/first-publish-date
- agent/description
- agent/severity
- agent/event
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/omron
- canonical/omron cj2h-cpu64-eip firmware
- canonical/omron sysmac cj2h-cpu64-eip firmware
- canonical/omron sysmac cj2h-cpu64 firmware
- canonical/omron sysmac cj2h-cpu68
- canonical/omron cj2h-cpu65-eip
- canonical/omron cj2h-cpu65 firmware
- canonical/omron sysmac cj2h-cpu65 firmware
- canonical/omron cj2h-cpu66-eip
- canonical/omron sysmac cj2h firmware
- canonical/omron sysmac cj2h-cpu66 firmware
- canonical/omron cj2h-cpu67-eip firmware
- canonical/omron cj2h-cpu67 firmware
- canonical/omron sysmac cj2h
- canonical/omron sysmac cj2h-cpu68-eip firmware
- canonical/omron cj2h-cpu68 firmware
- canonical/omron cj2m-cpu11 firmware
- canonical/omron sysmac cj2m-cpu11 firmware
- canonical/omron cj2m-cpu12 firmware
- canonical/omron sysmac cj2m-cpu12 firmware
- canonical/omron cj2m-cpu13
- canonical/omron sysmac cj2m-cpu13 firmware
- canonical/omron sysmac cj2m-cpu14 firmware
- canonical/omron cj2m-cpu15
- canonical/omron sysmac cj2m-cpu15 firmware
- canonical/omron cj2m-cpu31 firmware
- canonical/omron sysmac cj2m-cpu31 firmware
- canonical/omron cj2m-cpu32 firmware
- canonical/omron sysmac cj2m-cpu32 firmware
- canonical/omron sysmac cj2m-cpu
- canonical/omron sysmac cj2m-cpu33 firmware
- canonical/omron sysmac cj2m-cpu34
- canonical/omron sysmac cj2m-cpu34 firmware
- canonical/omron cj2m-cpu35 firmware
- canonical/omron sysmac cj2m-cpu35 firmware
- canonical/omron cj1g-cpu45p
- canonical/omron sysmac cj1g-cpu45p firmware
- canonical/omron cj1g-cpu44p firmware
- canonical/omron sysmac cj1g-cpu44p firmware
- canonical/omron sysmac cj1g-cpu43p
- canonical/omron sysmac cj1g-cpu43p firmware
- canonical/omron sysmac cj1g-cpu42p
- canonical/omron sysmac cj1g-cpu42p firmware
- canonical/omron sysmac cs1h-cpu63h firmware
- canonical/omron sysmac cs1d-cpu65h
- canonical/omron sysmac cs1h-cpu65h firmware
- canonical/omron sysmac cs1h-cpu67h
- canonical/omron cs1h-cpu67h
- canonical/omron cs1h-cpu64h firmware
- canonical/omron sysmac cs1h-cpu64h firmware
- canonical/omron cs1h-cpu66h firmware
- canonical/omron sysmac cs1h-cpu66h firmware
- canonical/omron sysmac cs1g-cpu44h
- canonical/omron cs1g-cpu44h
- canonical/omron sysmac cs1g-cpu43h firmware
- canonical/omron sysmac cs1g-cpu42h
- canonical/omron cs1g-cpu45h firmware
- canonical/omron sysmac cs1g-cpu45h firmware
- canonical/omron cs1d-cpu65h firmware
- canonical/omron cs1d-cpu67h firmware
- canonical/omron sysmac cs1d-cpu68ha firmware
- canonical/omron sysmac cs1d-cpu67ha firmware
- canonical/omron sysmac cs1d-cpu65p
- canonical/omron sysmac cs1d-cpu65p firmware
- canonical/omron sysmac cs1d-cpu67sa
- canonical/omron sysmac cs1d-cpu44sa firmware
- canonical/omron sysmac cs1d-cpu67p
- canonical/omron cs1d-cpu67p