CVE-2022-33971
Severity Score
7.5
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Authentication bypass by capture-replay vulnerability exists in Machine automation controller NX7 series all models V1.28 and earlier, Machine automation controller NX1 series all models V1.48 and earlier, and Machine automation controller NJ series all models V 1.48 and earlier, which may allow an adjacent attacker who can analyze the communication between the controller and the specific software used by OMRON internally to cause a denial-of-service (DoS) condition or execute a malicious program.
Se presenta una vulnerabilidad de omisión de autenticación por captura-repetición en el controlador de automatización de Máquinas de la serie NX7 todos los modelos Versiones 1.28 y anteriores, en el controlador de automatización de Máquinas de la serie NX1 todos los modelos Versiones 1.48 y anteriores y en el controlador de automatización de Máquinas de la serie NJ todos los modelos Versiones 1.48 y anteriores, que puede permitir a un atacante adyacente que pueda analizar la comunicación entre el controlador y el software específico usado por OMRON internamente causar una condición de denegación de servicio (DoS) o ejecutar un programa malicioso
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2022-06-21 CVE Reserved
- 2022-07-04 CVE Published
- 2024-01-24 EPSS Updated
- 2024-08-03 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-294: Authentication Bypass by Capture-replay
CAPEC
References (2)
| URL | Tag | Source |
|---|---|---|
| https://jvn.jp/en/vu/JVNVU97050784/index.html | Third Party Advisory |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://www.ia.omron.com/product/vulnerability/OMSR-2022-002_en.pdf | 2022-07-15 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Omron Search vendor "Omron" | Nx701-1600 Firmware Search vendor "Omron" for product "Nx701-1600 Firmware" | <= 1.28 Search vendor "Omron" for product "Nx701-1600 Firmware" and version " <= 1.28" | - |
Affected
| in | Omron Search vendor "Omron" | Nx701-1600 Search vendor "Omron" for product "Nx701-1600" | - | - |
Safe
|
| Omron Search vendor "Omron" | Nx701-1700 Firmware Search vendor "Omron" for product "Nx701-1700 Firmware" | <= 1.28 Search vendor "Omron" for product "Nx701-1700 Firmware" and version " <= 1.28" | - |
Affected
| in | Omron Search vendor "Omron" | Nx701-1700 Search vendor "Omron" for product "Nx701-1700" | - | - |
Safe
|
| Omron Search vendor "Omron" | Nx701-z700 Firmware Search vendor "Omron" for product "Nx701-z700 Firmware" | <= 1.28 Search vendor "Omron" for product "Nx701-z700 Firmware" and version " <= 1.28" | - |
Affected
| in | Omron Search vendor "Omron" | Nx701-z700 Search vendor "Omron" for product "Nx701-z700" | - | - |
Safe
|
| Omron Search vendor "Omron" | Nx701-z600 Firmware Search vendor "Omron" for product "Nx701-z600 Firmware" | <= 1.28 Search vendor "Omron" for product "Nx701-z600 Firmware" and version " <= 1.28" | - |
Affected
| in | Omron Search vendor "Omron" | Nx701-z600 Search vendor "Omron" for product "Nx701-z600" | - | - |
Safe
|
| Omron Search vendor "Omron" | Nx701-1720 Firmware Search vendor "Omron" for product "Nx701-1720 Firmware" | <= 1.28 Search vendor "Omron" for product "Nx701-1720 Firmware" and version " <= 1.28" | - |
Affected
| in | Omron Search vendor "Omron" | Nx701-1720 Search vendor "Omron" for product "Nx701-1720" | - | - |
Safe
|
| Omron Search vendor "Omron" | Nx701-1620 Firmware Search vendor "Omron" for product "Nx701-1620 Firmware" | <= 1.28 Search vendor "Omron" for product "Nx701-1620 Firmware" and version " <= 1.28" | - |
Affected
| in | Omron Search vendor "Omron" | Nx701-1620 Search vendor "Omron" for product "Nx701-1620" | - | - |
Safe
|
| Omron Search vendor "Omron" | Nx102-1200 Firmware Search vendor "Omron" for product "Nx102-1200 Firmware" | <= 1.48 Search vendor "Omron" for product "Nx102-1200 Firmware" and version " <= 1.48" | - |
Affected
| in | Omron Search vendor "Omron" | Nx102-1200 Search vendor "Omron" for product "Nx102-1200" | - | - |
Safe
|
| Omron Search vendor "Omron" | Nx102-1100 Firmware Search vendor "Omron" for product "Nx102-1100 Firmware" | <= 1.48 Search vendor "Omron" for product "Nx102-1100 Firmware" and version " <= 1.48" | - |
Affected
| in | Omron Search vendor "Omron" | Nx102-1100 Search vendor "Omron" for product "Nx102-1100" | - | - |
Safe
|
| Omron Search vendor "Omron" | Nx102-1000 Firmware Search vendor "Omron" for product "Nx102-1000 Firmware" | <= 1.48 Search vendor "Omron" for product "Nx102-1000 Firmware" and version " <= 1.48" | - |
Affected
| in | Omron Search vendor "Omron" | Nx102-1000 Search vendor "Omron" for product "Nx102-1000" | - | - |
Safe
|
| Omron Search vendor "Omron" | Nx102-1220 Firmware Search vendor "Omron" for product "Nx102-1220 Firmware" | <= 1.48 Search vendor "Omron" for product "Nx102-1220 Firmware" and version " <= 1.48" | - |
Affected
| in | Omron Search vendor "Omron" | Nx102-1220 Search vendor "Omron" for product "Nx102-1220" | - | - |
Safe
|
| Omron Search vendor "Omron" | Nx102-1120 Firmware Search vendor "Omron" for product "Nx102-1120 Firmware" | <= 1.48 Search vendor "Omron" for product "Nx102-1120 Firmware" and version " <= 1.48" | - |
Affected
| in | Omron Search vendor "Omron" | Nx102-1120 Search vendor "Omron" for product "Nx102-1120" | - | - |
Safe
|
| Omron Search vendor "Omron" | Nx102-1020 Firmware Search vendor "Omron" for product "Nx102-1020 Firmware" | <= 1.48 Search vendor "Omron" for product "Nx102-1020 Firmware" and version " <= 1.48" | - |
Affected
| in | Omron Search vendor "Omron" | Nx102-1020 Search vendor "Omron" for product "Nx102-1020" | - | - |
Safe
|
| Omron Search vendor "Omron" | Nx102-9020 Firmware Search vendor "Omron" for product "Nx102-9020 Firmware" | <= 1.48 Search vendor "Omron" for product "Nx102-9020 Firmware" and version " <= 1.48" | - |
Affected
| in | Omron Search vendor "Omron" | Nx102-9020 Search vendor "Omron" for product "Nx102-9020" | - | - |
Safe
|
| Omron Search vendor "Omron" | Nx1p2-1140dt Firmware Search vendor "Omron" for product "Nx1p2-1140dt Firmware" | <= 1.48 Search vendor "Omron" for product "Nx1p2-1140dt Firmware" and version " <= 1.48" | - |
Affected
| in | Omron Search vendor "Omron" | Nx1p2-1140dt Search vendor "Omron" for product "Nx1p2-1140dt" | - | - |
Safe
|
| Omron Search vendor "Omron" | Nx1p2-1140dt1 Firmware Search vendor "Omron" for product "Nx1p2-1140dt1 Firmware" | <= 1.48 Search vendor "Omron" for product "Nx1p2-1140dt1 Firmware" and version " <= 1.48" | - |
Affected
| in | Omron Search vendor "Omron" | Nx1p2-1140dt1 Search vendor "Omron" for product "Nx1p2-1140dt1" | - | - |
Safe
|
| Omron Search vendor "Omron" | Nx1p2-1040dt Firmware Search vendor "Omron" for product "Nx1p2-1040dt Firmware" | <= 1.48 Search vendor "Omron" for product "Nx1p2-1040dt Firmware" and version " <= 1.48" | - |
Affected
| in | Omron Search vendor "Omron" | Nx1p2-1040dt Search vendor "Omron" for product "Nx1p2-1040dt" | - | - |
Safe
|
| Omron Search vendor "Omron" | Nx1p2-1040dt1 Firmware Search vendor "Omron" for product "Nx1p2-1040dt1 Firmware" | <= 1.48 Search vendor "Omron" for product "Nx1p2-1040dt1 Firmware" and version " <= 1.48" | - |
Affected
| in | Omron Search vendor "Omron" | Nx1p2-1040dt1 Search vendor "Omron" for product "Nx1p2-1040dt1" | - | - |
Safe
|
| Omron Search vendor "Omron" | Nx1p2-9024dt Firmware Search vendor "Omron" for product "Nx1p2-9024dt Firmware" | <= 1.48 Search vendor "Omron" for product "Nx1p2-9024dt Firmware" and version " <= 1.48" | - |
Affected
| in | Omron Search vendor "Omron" | Nx1p2-9024dt Search vendor "Omron" for product "Nx1p2-9024dt" | - | - |
Safe
|
| Omron Search vendor "Omron" | Nx1p2-9024dt1 Firmware Search vendor "Omron" for product "Nx1p2-9024dt1 Firmware" | <= 1.48 Search vendor "Omron" for product "Nx1p2-9024dt1 Firmware" and version " <= 1.48" | - |
Affected
| in | Omron Search vendor "Omron" | Nx1p2-9024dt1 Search vendor "Omron" for product "Nx1p2-9024dt1" | - | - |
Safe
|
| Omron Search vendor "Omron" | Nx1w-cif01 Firmware Search vendor "Omron" for product "Nx1w-cif01 Firmware" | <= 1.48 Search vendor "Omron" for product "Nx1w-cif01 Firmware" and version " <= 1.48" | - |
Affected
| in | Omron Search vendor "Omron" | Nx1w-cif01 Search vendor "Omron" for product "Nx1w-cif01" | - | - |
Safe
|
| Omron Search vendor "Omron" | Nx1w-cif11 Firmware Search vendor "Omron" for product "Nx1w-cif11 Firmware" | <= 1.48 Search vendor "Omron" for product "Nx1w-cif11 Firmware" and version " <= 1.48" | - |
Affected
| in | Omron Search vendor "Omron" | Nx1w-cif11 Search vendor "Omron" for product "Nx1w-cif11" | - | - |
Safe
|
| Omron Search vendor "Omron" | Nx1w-cif12 Firmware Search vendor "Omron" for product "Nx1w-cif12 Firmware" | <= 1.48 Search vendor "Omron" for product "Nx1w-cif12 Firmware" and version " <= 1.48" | - |
Affected
| in | Omron Search vendor "Omron" | Nx1w-cif12 Search vendor "Omron" for product "Nx1w-cif12" | - | - |
Safe
|
| Omron Search vendor "Omron" | Nx1w-adb21 Firmware Search vendor "Omron" for product "Nx1w-adb21 Firmware" | <= 1.48 Search vendor "Omron" for product "Nx1w-adb21 Firmware" and version " <= 1.48" | - |
Affected
| in | Omron Search vendor "Omron" | Nx1w-adb21 Search vendor "Omron" for product "Nx1w-adb21" | - | - |
Safe
|
| Omron Search vendor "Omron" | Nx1w-dab21v Firmware Search vendor "Omron" for product "Nx1w-dab21v Firmware" | <= 1.48 Search vendor "Omron" for product "Nx1w-dab21v Firmware" and version " <= 1.48" | - |
Affected
| in | Omron Search vendor "Omron" | Nx1w-dab21v Search vendor "Omron" for product "Nx1w-dab21v" | - | - |
Safe
|
| Omron Search vendor "Omron" | Nx1w-mab221 Firmware Search vendor "Omron" for product "Nx1w-mab221 Firmware" | <= 1.48 Search vendor "Omron" for product "Nx1w-mab221 Firmware" and version " <= 1.48" | - |
Affected
| in | Omron Search vendor "Omron" | Nx1w-mab221 Search vendor "Omron" for product "Nx1w-mab221" | - | - |
Safe
|
| Omron Search vendor "Omron" | Nj501-1500 Firmware Search vendor "Omron" for product "Nj501-1500 Firmware" | <= 1.48 Search vendor "Omron" for product "Nj501-1500 Firmware" and version " <= 1.48" | - |
Affected
| in | Omron Search vendor "Omron" | Nj501-1500 Search vendor "Omron" for product "Nj501-1500" | - | - |
Safe
|
| Omron Search vendor "Omron" | Nj501-140 Firmware Search vendor "Omron" for product "Nj501-140 Firmware" | <= 1.48 Search vendor "Omron" for product "Nj501-140 Firmware" and version " <= 1.48" | - |
Affected
| in | Omron Search vendor "Omron" | Nj501-140 Search vendor "Omron" for product "Nj501-140" | - | - |
Safe
|
| Omron Search vendor "Omron" | Nj501-1300 Firmware Search vendor "Omron" for product "Nj501-1300 Firmware" | <= 1.48 Search vendor "Omron" for product "Nj501-1300 Firmware" and version " <= 1.48" | - |
Affected
| in | Omron Search vendor "Omron" | Nj501-1300 Search vendor "Omron" for product "Nj501-1300" | - | - |
Safe
|
| Omron Search vendor "Omron" | Nj501-r500 Firmware Search vendor "Omron" for product "Nj501-r500 Firmware" | <= 1.48 Search vendor "Omron" for product "Nj501-r500 Firmware" and version " <= 1.48" | - |
Affected
| in | Omron Search vendor "Omron" | Nj501-r500 Search vendor "Omron" for product "Nj501-r500" | - | - |
Safe
|
| Omron Search vendor "Omron" | Nj501-r520 Firmware Search vendor "Omron" for product "Nj501-r520 Firmware" | <= 1.48 Search vendor "Omron" for product "Nj501-r520 Firmware" and version " <= 1.48" | - |
Affected
| in | Omron Search vendor "Omron" | Nj501-r520 Search vendor "Omron" for product "Nj501-r520" | - | - |
Safe
|
| Omron Search vendor "Omron" | Nj501-r400 Firmware Search vendor "Omron" for product "Nj501-r400 Firmware" | <= 1.48 Search vendor "Omron" for product "Nj501-r400 Firmware" and version " <= 1.48" | - |
Affected
| in | Omron Search vendor "Omron" | Nj501-r400 Search vendor "Omron" for product "Nj501-r400" | - | - |
Safe
|
| Omron Search vendor "Omron" | Nj501-r420 Firmware Search vendor "Omron" for product "Nj501-r420 Firmware" | <= 1.48 Search vendor "Omron" for product "Nj501-r420 Firmware" and version " <= 1.48" | - |
Affected
| in | Omron Search vendor "Omron" | Nj501-r420 Search vendor "Omron" for product "Nj501-r420" | - | - |
Safe
|
| Omron Search vendor "Omron" | Nj501-r300 Firmware Search vendor "Omron" for product "Nj501-r300 Firmware" | <= 1.48 Search vendor "Omron" for product "Nj501-r300 Firmware" and version " <= 1.48" | - |
Affected
| in | Omron Search vendor "Omron" | Nj501-r300 Search vendor "Omron" for product "Nj501-r300" | - | - |
Safe
|
| Omron Search vendor "Omron" | Nj501-r320 Firmware Search vendor "Omron" for product "Nj501-r320 Firmware" | <= 1.48 Search vendor "Omron" for product "Nj501-r320 Firmware" and version " <= 1.48" | - |
Affected
| in | Omron Search vendor "Omron" | Nj501-r320 Search vendor "Omron" for product "Nj501-r320" | - | - |
Safe
|
| Omron Search vendor "Omron" | Nj501-5300 Firmware Search vendor "Omron" for product "Nj501-5300 Firmware" | <= 1.48 Search vendor "Omron" for product "Nj501-5300 Firmware" and version " <= 1.48" | - |
Affected
| in | Omron Search vendor "Omron" | Nj501-5300 Search vendor "Omron" for product "Nj501-5300" | - | - |
Safe
|
| Omron Search vendor "Omron" | Nj501-1520 Firmware Search vendor "Omron" for product "Nj501-1520 Firmware" | <= 1.48 Search vendor "Omron" for product "Nj501-1520 Firmware" and version " <= 1.48" | - |
Affected
| in | Omron Search vendor "Omron" | Nj501-1520 Search vendor "Omron" for product "Nj501-1520" | - | - |
Safe
|
| Omron Search vendor "Omron" | Nj501-1420 Firmware Search vendor "Omron" for product "Nj501-1420 Firmware" | <= 1.48 Search vendor "Omron" for product "Nj501-1420 Firmware" and version " <= 1.48" | - |
Affected
| in | Omron Search vendor "Omron" | Nj501-1420 Search vendor "Omron" for product "Nj501-1420" | - | - |
Safe
|
| Omron Search vendor "Omron" | Nj501-1320 Firmware Search vendor "Omron" for product "Nj501-1320 Firmware" | <= 1.48 Search vendor "Omron" for product "Nj501-1320 Firmware" and version " <= 1.48" | - |
Affected
| in | Omron Search vendor "Omron" | Nj501-1320 Search vendor "Omron" for product "Nj501-1320" | - | - |
Safe
|
| Omron Search vendor "Omron" | Nj101-1020 Firmware Search vendor "Omron" for product "Nj101-1020 Firmware" | <= 1.48 Search vendor "Omron" for product "Nj101-1020 Firmware" and version " <= 1.48" | - |
Affected
| in | Omron Search vendor "Omron" | Nj101-1020 Search vendor "Omron" for product "Nj101-1020" | - | - |
Safe
|
| Omron Search vendor "Omron" | Nj101-9020 Firmware Search vendor "Omron" for product "Nj101-9020 Firmware" | <= 1.48 Search vendor "Omron" for product "Nj101-9020 Firmware" and version " <= 1.48" | - |
Affected
| in | Omron Search vendor "Omron" | Nj101-9020 Search vendor "Omron" for product "Nj101-9020" | - | - |
Safe
|
| Omron Search vendor "Omron" | Nj501-1340 Firmware Search vendor "Omron" for product "Nj501-1340 Firmware" | <= 1.48 Search vendor "Omron" for product "Nj501-1340 Firmware" and version " <= 1.48" | - |
Affected
| in | Omron Search vendor "Omron" | Nj501-1340 Search vendor "Omron" for product "Nj501-1340" | - | - |
Safe
|
| Omron Search vendor "Omron" | Nj501-4500 Firmware Search vendor "Omron" for product "Nj501-4500 Firmware" | <= 1.48 Search vendor "Omron" for product "Nj501-4500 Firmware" and version " <= 1.48" | - |
Affected
| in | Omron Search vendor "Omron" | Nj501-4500 Search vendor "Omron" for product "Nj501-4500" | - | - |
Safe
|
| Omron Search vendor "Omron" | Nj501-4400 Firmware Search vendor "Omron" for product "Nj501-4400 Firmware" | <= 1.48 Search vendor "Omron" for product "Nj501-4400 Firmware" and version " <= 1.48" | - |
Affected
| in | Omron Search vendor "Omron" | Nj501-4400 Search vendor "Omron" for product "Nj501-4400" | - | - |
Safe
|
| Omron Search vendor "Omron" | Nj501-4300 Firmware Search vendor "Omron" for product "Nj501-4300 Firmware" | <= 1.48 Search vendor "Omron" for product "Nj501-4300 Firmware" and version " <= 1.48" | - |
Affected
| in | Omron Search vendor "Omron" | Nj501-4300 Search vendor "Omron" for product "Nj501-4300" | - | - |
Safe
|
| Omron Search vendor "Omron" | Nj501-4310 Firmware Search vendor "Omron" for product "Nj501-4310 Firmware" | <= 1.48 Search vendor "Omron" for product "Nj501-4310 Firmware" and version " <= 1.48" | - |
Affected
| in | Omron Search vendor "Omron" | Nj501-4310 Search vendor "Omron" for product "Nj501-4310" | - | - |
Safe
|
| Omron Search vendor "Omron" | Nj501-4320 Firmware Search vendor "Omron" for product "Nj501-4320 Firmware" | <= 1.48 Search vendor "Omron" for product "Nj501-4320 Firmware" and version " <= 1.48" | - |
Affected
| in | Omron Search vendor "Omron" | Nj501-4320 Search vendor "Omron" for product "Nj501-4320" | - | - |
Safe
|
| Omron Search vendor "Omron" | Nj301-1200 Firmware Search vendor "Omron" for product "Nj301-1200 Firmware" | < 1.48 Search vendor "Omron" for product "Nj301-1200 Firmware" and version " < 1.48" | - |
Affected
| in | Omron Search vendor "Omron" | Nj301-1200 Search vendor "Omron" for product "Nj301-1200" | - | - |
Safe
|
| Omron Search vendor "Omron" | Nj301-1100 Firmware Search vendor "Omron" for product "Nj301-1100 Firmware" | <= 1.48 Search vendor "Omron" for product "Nj301-1100 Firmware" and version " <= 1.48" | - |
Affected
| in | Omron Search vendor "Omron" | Nj301-1100 Search vendor "Omron" for product "Nj301-1100" | - | - |
Safe
|
| Omron Search vendor "Omron" | Nj101-1000 Firmware Search vendor "Omron" for product "Nj101-1000 Firmware" | <= 1.48 Search vendor "Omron" for product "Nj101-1000 Firmware" and version " <= 1.48" | - |
Affected
| in | Omron Search vendor "Omron" | Nj101-1000 Search vendor "Omron" for product "Nj101-1000" | - | - |
Safe
|
| Omron Search vendor "Omron" | Nj101-9000 Firmware Search vendor "Omron" for product "Nj101-9000 Firmware" | <= 1.48 Search vendor "Omron" for product "Nj101-9000 Firmware" and version " <= 1.48" | - |
Affected
| in | Omron Search vendor "Omron" | Nj101-9000 Search vendor "Omron" for product "Nj101-9000" | - | - |
Safe
|
| Omron Search vendor "Omron" | Nj-pa3001 Firmware Search vendor "Omron" for product "Nj-pa3001 Firmware" | <= 1.48 Search vendor "Omron" for product "Nj-pa3001 Firmware" and version " <= 1.48" | - |
Affected
| in | Omron Search vendor "Omron" | Nj-pa3001 Search vendor "Omron" for product "Nj-pa3001" | - | - |
Safe
|
| Omron Search vendor "Omron" | Nj-pd3001 Firmware Search vendor "Omron" for product "Nj-pd3001 Firmware" | <= 1.48 Search vendor "Omron" for product "Nj-pd3001 Firmware" and version " <= 1.48" | - |
Affected
| in | Omron Search vendor "Omron" | Nj-pd3001 Search vendor "Omron" for product "Nj-pd3001" | - | - |
Safe
|