Rewterz Threat Advisory – ICS: Omron CX-One Code Execution Vulnerabilities
January 8, 2021Rewterz Threat Alert – AgentTesla Information Stealer – Fresh IoCs
January 8, 2021Rewterz Threat Advisory – ICS: Omron CX-One Code Execution Vulnerabilities
January 8, 2021Rewterz Threat Alert – AgentTesla Information Stealer – Fresh IoCs
January 8, 2021Severity
Medium
Analysis Summary
CVE-2020-6656
The affected product allows a pointer to be read into an object from a file, resulting in type confusion.
CVE-2020-6655
The affected product is vulnerable to an out-of-bounds read, which may allow an attacker to modify or crash the program.
Impact
- Type Confusion
- Out-of-bounds Read
Affected Vendors
Eaton
Affected Products
Versions 7.20 and prior
Remediation
Refer to vendor advisory for the complete list of affected products and their respective patches.