Rewterz Threat Advisory – ICS: Horner Automation Cscape Vulnerability
October 5, 2022Rewterz Threat Advisory – Multiple IBM Robotic Process Automation Vulnerabilities
October 5, 2022Rewterz Threat Advisory – ICS: Horner Automation Cscape Vulnerability
October 5, 2022Rewterz Threat Advisory – Multiple IBM Robotic Process Automation Vulnerabilities
October 5, 2022Severity
High
Analysis Summary
CVE-2022-3398 CVSS:7.8
The affected product is vulnerable to an Out-of-Bounds Write in CX-P.exe, which may allow an attacker to execute arbitrary code.
CVE-2022-3396 CVSS:7.8
The affected product is vulnerable to an Out-of-Bounds Write in CX-P, which may allow an attacker to execute arbitrary code.
CVE-2022-3397 CVSS:7.8
The affected product is vulnerable to an Out-of-Bounds Write CX-P, which may allow an attacker to execute arbitrary code.
Impact
- Arbitrary Code Execution
Indicators Of Compromise
CVE
- CVE-2022-3398
- CVE-2022-3396
- CVE-2022-3397
Affected Vendors
Omron
Affected Products
CX-Programmer: Version 9.78 and prior
Remediation
Refer to CISA-CERT Advisory for the patch, upgrade, or suggested workaround information.
CISA-CERT Advisory