Skip to main content

Cp1L El20Dr D Firmware

2 CVEs product

Monthly

CVE-2023-27396 CRITICAL Act Now

FINS (Factory Interface Network Service) is a message communication protocol, which is designed to be used in closed FA (Factory Automation) networks, and is used in FA networks composed of OMRON. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Cs1W Eip21 Firmware Cs1W Spu01 V2 Firmware Cs1W Spu02 V2 Firmware Cs1W Etn21 Firmware +267
NVD
CVSS 3.1
9.8
EPSS
1.4%
CVE-2023-22357 CRITICAL Act Now

Active debug code exists in OMRON CP1L-EL20DR-D all versions, which may lead to a command that is not specified in FINS protocol being executed without authentication. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Cp1L El20Dr D Firmware
NVD
CVSS 3.1
9.8
EPSS
1.2%
EPSS 1% CVSS 9.8
CRITICAL Act Now

FINS (Factory Interface Network Service) is a message communication protocol, which is designed to be used in closed FA (Factory Automation) networks, and is used in FA networks composed of OMRON. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Cs1W Eip21 Firmware Cs1W Spu01 V2 Firmware +269
NVD
EPSS 1% CVSS 9.8
CRITICAL Act Now

Active debug code exists in OMRON CP1L-EL20DR-D all versions, which may lead to a command that is not specified in FINS protocol being executed without authentication. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Cp1L El20Dr D Firmware
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy