Vulnerability Advisories | OMRON Industrial Automation Japan

Vulnerability Advisories | OMRON Industrial Automation Japan https://www.fa.omron.co.jp/product/security/en/vulnerability/ OMRON will strive to supply secure products and services for customer’s safety and security. en © Copyright OMRON Corporation 1996 - 2025. All Rights Reserved. Mon, 17 Nov 2025 09:00:00 +0900 Tue, 16 Sep 2025 09:00:00 +0900 https://www.rssboard.org/rss-specification Out-of-bounds Read vulnerability in IPC platform NY-series OMSR-2025-006 Out-of-bounds Read vulnerability in IPC platform NY-series https://www.fa.omron.co.jp/product/security/assets/pdf/en/OMSR-2025-006_en.pdf?ref=rss OMSR-2025-006_20251117 Mon, 17 Nov 2025 09:00:00 +0900 Least Privilege Violation Vulnerability in the communications functions of NJ/NX-series Machine Automation Controllers OMSR-2025-004 Least Privilege Violation Vulnerability in the communications functions of NJ/NX-series Machine Automation Controllers https://www.fa.omron.co.jp/product/security/assets/pdf/en/OMSR-2025-004_en.pdf?ref=rss OMSR-2025-004_20250714 Mon, 14 Jul 2025 09:00:00 +0900 Path Traversal Vulnerabilities in NJ/NX-series Machine Automation Controllers OMSR-2025-001 Path Traversal Vulnerabilities in NJ/NX-series Machine Automation Controllers https://www.fa.omron.co.jp/product/security/assets/pdf/en/OMSR-2025-001_en.pdf?ref=rss OMSR-2025-001_20250507 Wed, 07 May 2025 09:00:00 +0900 Out-of-bounds Read vulnerability in CX-Programmer OMSR-2024-003 Out-of-bounds Read vulnerability in CX-Programmer https://www.fa.omron.co.jp/product/security/assets/pdf/en/OMSR-2024-003_en.pdf?ref=rss OMSR-2024-003_20250507 Wed, 07 May 2025 09:00:00 +0900 Out-of-bounds Read vulnerability in CX-Programmer OMSR-2025-003 Out-of-bounds Read vulnerability in CX-Programmer https://www.fa.omron.co.jp/product/security/assets/pdf/en/OMSR-2025-003_en.pdf?ref=rss OMSR-2025-003_20250310 Mon, 10 Mar 2025 09:00:00 +0900 Vulnerability Report on Improper Restriction of XML External Entity Reference in NB-Designer OMSR-2025-002 Vulnerability Report on Improper Restriction of XML External Entity Reference in NB-Designer https://www.fa.omron.co.jp/product/security/assets/pdf/en/OMSR-2025-002_en.pdf?ref=rss OMSR-2025-002_20250114 Tue, 14 Jan 2025 09:00:00 +0900 Multiple vulnerabilities caused by OpenSSL in CS/CJ-series Programmable Controllers EtherNet/IP Unit OMSR-2024-007 Multiple vulnerabilities caused by OpenSSL in CS/CJ-series Programmable Controllers EtherNet/IP Unit https://www.fa.omron.co.jp/product/security/assets/pdf/en/OMSR-2024-007_en.pdf?ref=rss OMSR-2024-007_20241101 Fri, 01 Nov 2024 09:00:00 +0900 Incorrect Authorization (CWE-863) vulnerability in Sysmac Studio Software OMSR-2024-006 Incorrect Authorization (CWE-863) vulnerability in Sysmac Studio Software https://www.fa.omron.co.jp/product/security/assets/pdf/en/OMSR-2024-006_en.pdf?ref=rss OMSR-2024-006_20241101 Fri, 01 Nov 2024 09:00:00 +0900 Multiple vulnerabilities caused by OpenSSL in NJ/NX-series Machine Automation Controllers OMSR-2024-005 Multiple vulnerabilities caused by OpenSSL in NJ/NX-series Machine Automation Controllers https://www.fa.omron.co.jp/product/security/assets/pdf/en/OMSR-2024-005_en.pdf?ref=rss OMSR-2024-005_20240527 Mon, 27 May 2024 09:00:00 +0900 Insufficient Verification of Data Authenticity vulnerability in the NJ/NX-series Machine Automation Controllers OMSR-2024-004 Insufficient Verification of Data Authenticity vulnerability in the NJ/NX-series Machine Automation Controllers https://www.fa.omron.co.jp/product/security/assets/pdf/en/OMSR-2024-004_en.pdf?ref=rss OMSR-2024-004_20240527 Mon, 27 May 2024 09:00:00 +0900 Path Traversal vulnerability in NJ/NX-series Machine Automation Controllers OMSR-2024-001 Path Traversal vulnerability in NJ/NX-series Machine Automation Controllers https://www.fa.omron.co.jp/product/security/assets/pdf/en/OMSR-2024-001_en.pdf?ref=rss OMSR-2024-001_20240527 Mon, 27 May 2024 09:00:00 +0900 Free of Pointer not at Start of Buffer vulnerability in Common Modules of Sysmac Studio and CX-One OMSR-2024-002 Free of Pointer not at Start of Buffer vulnerability in Common Modules of Sysmac Studio and CX-One https://www.fa.omron.co.jp/product/security/assets/pdf/en/OMSR-2024-002_en.pdf?ref=rss OMSR-2024-002_20240422 Mon, 22 Apr 2024 09:00:00 +0900 Improper Control of Interaction Frequency in FINS protocol between the CS/CJ/CP-series Programable Controllers OMSR-2023-010 Improper Control of Interaction Frequency in FINS protocol between the CS/CJ/CP-series Programable Controllers https://www.fa.omron.co.jp/product/security/assets/pdf/en/OMSR-2023-010_en.pdf?ref=rss OMSR-2023-010_20231113 Mon, 13 Nov 2023 09:00:00 +0900 Vulnerability that could cause a Denial of Service (DoS) state in the built-in EtherNet/IP™ port of the CJ Series CJ2 CPU unit and the CS/CJ series EtherNet/IP™ unit OMSR-2023-006 Vulnerability that could cause a Denial of Service (DoS) state in the built-in EtherNet/IP™ port of the CJ Series CJ2 CPU unit and the CS/CJ series EtherNet/IP™ unit https://www.fa.omron.co.jp/product/security/assets/pdf/en/OMSR-2023-006_en.pdf?ref=rss OMSR-2023-006_20231113 Mon, 13 Nov 2023 09:00:00 +0900 Vulnerability Report on Improper Restriction of XML External Entity Reference in CX-Designer OMSR-2023-011 Vulnerability Report on Improper Restriction of XML External Entity Reference in CX-Designer https://www.fa.omron.co.jp/product/security/assets/pdf/en/OMSR-2023-011_en.pdf?ref=rss OMSR-2023-011_20231023 Mon, 23 Oct 2023 09:00:00 +0900 Improper Authorization Vulnerability in Automation Software Sysmac Studio OMSR-2023-009 Improper Authorization Vulnerability in Automation Software Sysmac Studio https://www.fa.omron.co.jp/product/security/assets/pdf/en/OMSR-2023-009_en.pdf?ref=rss OMSR-2023-009_20230919 Tue, 19 Sep 2023 09:00:00 +0900 Path Traversal Vulnerability in Automation Software Sysmac Studio and NX-IO Configurator OMSR-2023-008 Path Traversal Vulnerability in Automation Software Sysmac Studio and NX-IO Configurator https://www.fa.omron.co.jp/product/security/assets/pdf/en/OMSR-2023-008_en.pdf?ref=rss OMSR-2023-008_20230919 Tue, 19 Sep 2023 09:00:00 +0900 About Known Issues in the FINS Protocol Implemented in Omron Products OMSR-2023-003 About Known Issues in the FINS Protocol Implemented in Omron Products https://www.fa.omron.co.jp/product/security/assets/pdf/en/OMSR-2023-003_en.pdf?ref=rss OMSR-2023-003_20230919 Tue, 19 Sep 2023 09:00:00 +0900 NicheStack TCP/IP stack Vulnerabilities on EtherNet/IP™ option board for Multi-function Compact Inverter 3G3MX2 OMSR-2023-007 NicheStack TCP/IP stack Vulnerabilities on EtherNet/IP™ option board for Multi-function Compact Inverter 3G3MX2 https://www.fa.omron.co.jp/product/security/assets/pdf/en/OMSR-2023-007_en.pdf?ref=rss OMSR-2023-007_20230801 Tue, 01 Aug 2023 09:00:00 +0900 Out-of-bounds Read, Use After Free and Heap-based Buffer Overflow Vulnerabilities in CX-Programmer OMSR-2023-005 Out-of-bounds Read, Use After Free and Heap-based Buffer Overflow Vulnerabilities in CX-Programmer https://www.fa.omron.co.jp/product/security/assets/pdf/en/OMSR-2023-005_en.pdf?ref=rss OMSR-2023-005_20230801 Tue, 01 Aug 2023 09:00:00 +0900 Support tool CX-Drive for inverter/servo heap-based buffer overflow vulnerability OMSR-2023-004 Support tool CX-Drive for inverter/servo heap-based buffer overflow vulnerability https://www.fa.omron.co.jp/product/security/assets/pdf/en/OMSR-2023-004_en.pdf?ref=rss OMSR-2023-004_20230801 Tue, 01 Aug 2023 09:00:00 +0900 Missing Authentication Vulnerabilities related to file system of CS/CJ-series Programmable Controllers OMSR-2023-002 Missing Authentication Vulnerabilities related to file system of CS/CJ-series Programmable Controllers https://www.fa.omron.co.jp/product/security/assets/pdf/en/OMSR-2023-002_en.pdf?ref=rss OMSR-2023-002_20230417 Mon, 17 Apr 2023 09:00:00 +0900 Vulnerabilities related to bypass of user memory protection function of CS/CJ/CP-series Programmable Controllers OMSR-2023-001 Vulnerabilities related to bypass of user memory protection function of CS/CJ/CP-series Programmable Controllers https://www.fa.omron.co.jp/product/security/assets/pdf/en/OMSR-2023-001_en.pdf?ref=rss OMSR-2023-001_20230313 Mon, 13 Mar 2023 09:00:00 +0900 Authentication bypass vulnerabilities in communications functions of NJ/NX-series Machine Automation Controllers OMSR-2022-001 Authentication bypass vulnerabilities in communications functions of NJ/NX-series Machine Automation Controllers https://www.fa.omron.co.jp/product/security/assets/pdf/en/OMSR-2022-001_en.pdf?ref=rss OMSR-2022-001_20221011 Tue, 11 Oct 2022 09:00:00 +0900 Malicious program execution vulnerability in NJ/NX-series Machine Automation Controllers OMSR-2022-002 Malicious program execution vulnerability in NJ/NX-series Machine Automation Controllers https://www.fa.omron.co.jp/product/security/assets/pdf/en/OMSR-2022-002_en.pdf?ref=rss OMSR-2022-002_20221011 Tue, 11 Oct 2022 09:00:00 +0900