CVE-2022-45790
Omron FINS memory protection susceptible to bruteforce
Severity Score
9.1
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
Attend
*SSVC
Descriptions
The Omron FINS protocol has an authenticated feature to prevent access to memory regions. Authentication is susceptible to bruteforce attack, which may allow an adversary to gain access to protected memory. This access can allow overwrite of values including programmed logic.
El protocolo Omron FINS tiene una función autenticada para evitar el acceso a regiones de memoria. La autenticación es susceptible a ataques de fuerza bruta, lo que puede permitir que un adversario obtenga acceso a la memoria protegida. Este acceso puede permitir la sobrescritura de valores, incluida la lógica programada.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:Attend
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2022-11-22 CVE Reserved
- 2024-01-22 CVE Published
- 2024-01-30 EPSS Updated
- 2024-11-13 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-307: Improper Restriction of Excessive Authentication Attempts
CAPEC
- CAPEC-629: DEPRECATED: Unauthorized Use of Device Resources
References (3)
| URL | Tag | Source |
|---|---|---|
| https://www.cisa.gov/news-events/ics-advisories/icsa-23-262-05 | Third Party Advisory | |
| https://www.dragos.com/advisory/omron-plc-and-engineering-software-network-and-file-format-access | Third Party Advisory |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://www.fa.omron.co.jp/product/security/assets/pdf/en/OMSR-2023-010_en.pdf | 2024-01-29 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Omron Search vendor "Omron" | Cj1g-cpu45p Firmware Search vendor "Omron" for product "Cj1g-cpu45p Firmware" | < 4.1 Search vendor "Omron" for product "Cj1g-cpu45p Firmware" and version " < 4.1" | - |
Affected
| in | Omron Search vendor "Omron" | Cj1g-cpu45p Search vendor "Omron" for product "Cj1g-cpu45p" | - | - |
Safe
|
| Omron Search vendor "Omron" | Cj1g-cpu45p-gtc Firmware Search vendor "Omron" for product "Cj1g-cpu45p-gtc Firmware" | < 4.1 Search vendor "Omron" for product "Cj1g-cpu45p-gtc Firmware" and version " < 4.1" | - |
Affected
| in | Omron Search vendor "Omron" | Cj1g-cpu45p-gtc Search vendor "Omron" for product "Cj1g-cpu45p-gtc" | - | - |
Safe
|
| Omron Search vendor "Omron" | Cj1g-cpu44p Firmware Search vendor "Omron" for product "Cj1g-cpu44p Firmware" | < 4.1 Search vendor "Omron" for product "Cj1g-cpu44p Firmware" and version " < 4.1" | - |
Affected
| in | Omron Search vendor "Omron" | Cj1g-cpu44p Search vendor "Omron" for product "Cj1g-cpu44p" | - | - |
Safe
|
| Omron Search vendor "Omron" | Cj1g-cpu43p Firmware Search vendor "Omron" for product "Cj1g-cpu43p Firmware" | < 4.1 Search vendor "Omron" for product "Cj1g-cpu43p Firmware" and version " < 4.1" | - |
Affected
| in | Omron Search vendor "Omron" | Cj1g-cpu43p Search vendor "Omron" for product "Cj1g-cpu43p" | - | - |
Safe
|
| Omron Search vendor "Omron" | Cj1g-cpu42p Firmware Search vendor "Omron" for product "Cj1g-cpu42p Firmware" | < 4.1 Search vendor "Omron" for product "Cj1g-cpu42p Firmware" and version " < 4.1" | - |
Affected
| in | Omron Search vendor "Omron" | Cj1g-cpu42p Search vendor "Omron" for product "Cj1g-cpu42p" | - | - |
Safe
|
| Omron Search vendor "Omron" | Cp1e-e Firmware Search vendor "Omron" for product "Cp1e-e Firmware" | < 1.3 Search vendor "Omron" for product "Cp1e-e Firmware" and version " < 1.3" | - |
Affected
| in | Omron Search vendor "Omron" | Cp1e-e Search vendor "Omron" for product "Cp1e-e" | - | - |
Safe
|
| Omron Search vendor "Omron" | Cp1e-n Firmware Search vendor "Omron" for product "Cp1e-n Firmware" | < 1.3 Search vendor "Omron" for product "Cp1e-n Firmware" and version " < 1.3" | - |
Affected
| in | Omron Search vendor "Omron" | Cp1e-n Search vendor "Omron" for product "Cp1e-n" | - | - |
Safe
|
| Omron Search vendor "Omron" | Cj2h-cpu68 Firmware Search vendor "Omron" for product "Cj2h-cpu68 Firmware" | < 1.5 Search vendor "Omron" for product "Cj2h-cpu68 Firmware" and version " < 1.5" | - |
Affected
| in | Omron Search vendor "Omron" | Cj2h-cpu68 Search vendor "Omron" for product "Cj2h-cpu68" | - | - |
Safe
|
| Omron Search vendor "Omron" | Cj2h-cpu67 Firmware Search vendor "Omron" for product "Cj2h-cpu67 Firmware" | < 1.5 Search vendor "Omron" for product "Cj2h-cpu67 Firmware" and version " < 1.5" | - |
Affected
| in | Omron Search vendor "Omron" | Cj2h-cpu67 Search vendor "Omron" for product "Cj2h-cpu67" | - | - |
Safe
|
| Omron Search vendor "Omron" | Cj2h-cpu66 Firmware Search vendor "Omron" for product "Cj2h-cpu66 Firmware" | < 1.5 Search vendor "Omron" for product "Cj2h-cpu66 Firmware" and version " < 1.5" | - |
Affected
| in | Omron Search vendor "Omron" | Cj2h-cpu66 Search vendor "Omron" for product "Cj2h-cpu66" | - | - |
Safe
|
| Omron Search vendor "Omron" | Cj2h-cpu65 Firmware Search vendor "Omron" for product "Cj2h-cpu65 Firmware" | < 1.5 Search vendor "Omron" for product "Cj2h-cpu65 Firmware" and version " < 1.5" | - |
Affected
| in | Omron Search vendor "Omron" | Cj2h-cpu65 Search vendor "Omron" for product "Cj2h-cpu65" | - | - |
Safe
|
| Omron Search vendor "Omron" | Cj2h-cpu64 Firmware Search vendor "Omron" for product "Cj2h-cpu64 Firmware" | < 1.5 Search vendor "Omron" for product "Cj2h-cpu64 Firmware" and version " < 1.5" | - |
Affected
| in | Omron Search vendor "Omron" | Cj2h-cpu64 Search vendor "Omron" for product "Cj2h-cpu64" | - | - |
Safe
|
| Omron Search vendor "Omron" | Cj2h-cpu68-eip Firmware Search vendor "Omron" for product "Cj2h-cpu68-eip Firmware" | < 1.5 Search vendor "Omron" for product "Cj2h-cpu68-eip Firmware" and version " < 1.5" | - |
Affected
| in | Omron Search vendor "Omron" | Cj2h-cpu68-eip Search vendor "Omron" for product "Cj2h-cpu68-eip" | - | - |
Safe
|
| Omron Search vendor "Omron" | Cj2h-cpu67-eip Firmware Search vendor "Omron" for product "Cj2h-cpu67-eip Firmware" | < 1.5 Search vendor "Omron" for product "Cj2h-cpu67-eip Firmware" and version " < 1.5" | - |
Affected
| in | Omron Search vendor "Omron" | Cj2h-cpu67-eip Search vendor "Omron" for product "Cj2h-cpu67-eip" | - | - |
Safe
|
| Omron Search vendor "Omron" | Cj2h-cpu66-eip Firmware Search vendor "Omron" for product "Cj2h-cpu66-eip Firmware" | < 1.5 Search vendor "Omron" for product "Cj2h-cpu66-eip Firmware" and version " < 1.5" | - |
Affected
| in | Omron Search vendor "Omron" | Cj2h-cpu66-eip Search vendor "Omron" for product "Cj2h-cpu66-eip" | - | - |
Safe
|
| Omron Search vendor "Omron" | Cj2h-cpu65-eip Firmware Search vendor "Omron" for product "Cj2h-cpu65-eip Firmware" | < 1.5 Search vendor "Omron" for product "Cj2h-cpu65-eip Firmware" and version " < 1.5" | - |
Affected
| in | Omron Search vendor "Omron" | Cj2h-cpu65-eip Search vendor "Omron" for product "Cj2h-cpu65-eip" | - | - |
Safe
|
| Omron Search vendor "Omron" | Cj2h-cpu64-eip Firmware Search vendor "Omron" for product "Cj2h-cpu64-eip Firmware" | < 1.5 Search vendor "Omron" for product "Cj2h-cpu64-eip Firmware" and version " < 1.5" | - |
Affected
| in | Omron Search vendor "Omron" | Cj2h-cpu64-eip Search vendor "Omron" for product "Cj2h-cpu64-eip" | - | - |
Safe
|
| Omron Search vendor "Omron" | Cj2m-cpu35 Firmware Search vendor "Omron" for product "Cj2m-cpu35 Firmware" | < 2.1 Search vendor "Omron" for product "Cj2m-cpu35 Firmware" and version " < 2.1" | - |
Affected
| in | Omron Search vendor "Omron" | Cj2m-cpu35 Search vendor "Omron" for product "Cj2m-cpu35" | - | - |
Safe
|
| Omron Search vendor "Omron" | Cj2m-cpu34 Firmware Search vendor "Omron" for product "Cj2m-cpu34 Firmware" | < 2.1 Search vendor "Omron" for product "Cj2m-cpu34 Firmware" and version " < 2.1" | - |
Affected
| in | Omron Search vendor "Omron" | Cj2m-cpu34 Search vendor "Omron" for product "Cj2m-cpu34" | - | - |
Safe
|
| Omron Search vendor "Omron" | Cj2m-cpu33 Firmware Search vendor "Omron" for product "Cj2m-cpu33 Firmware" | < 2.1 Search vendor "Omron" for product "Cj2m-cpu33 Firmware" and version " < 2.1" | - |
Affected
| in | Omron Search vendor "Omron" | Cj2m-cpu33 Search vendor "Omron" for product "Cj2m-cpu33" | - | - |
Safe
|
| Omron Search vendor "Omron" | Cj2m-cpu32 Firmware Search vendor "Omron" for product "Cj2m-cpu32 Firmware" | < 2.1 Search vendor "Omron" for product "Cj2m-cpu32 Firmware" and version " < 2.1" | - |
Affected
| in | Omron Search vendor "Omron" | Cj2m-cpu32 Search vendor "Omron" for product "Cj2m-cpu32" | - | - |
Safe
|
| Omron Search vendor "Omron" | Cj2m-cpu31 Firmware Search vendor "Omron" for product "Cj2m-cpu31 Firmware" | < 2.1 Search vendor "Omron" for product "Cj2m-cpu31 Firmware" and version " < 2.1" | - |
Affected
| in | Omron Search vendor "Omron" | Cj2m-cpu31 Search vendor "Omron" for product "Cj2m-cpu31" | - | - |
Safe
|
| Omron Search vendor "Omron" | Cj2m-cpu15 Firmware Search vendor "Omron" for product "Cj2m-cpu15 Firmware" | < 2.1 Search vendor "Omron" for product "Cj2m-cpu15 Firmware" and version " < 2.1" | - |
Affected
| in | Omron Search vendor "Omron" | Cj2m-cpu15 Search vendor "Omron" for product "Cj2m-cpu15" | - | - |
Safe
|
| Omron Search vendor "Omron" | Cj2m-cpu14 Firmware Search vendor "Omron" for product "Cj2m-cpu14 Firmware" | < 2.1 Search vendor "Omron" for product "Cj2m-cpu14 Firmware" and version " < 2.1" | - |
Affected
| in | Omron Search vendor "Omron" | Cj2m-cpu14 Search vendor "Omron" for product "Cj2m-cpu14" | - | - |
Safe
|
| Omron Search vendor "Omron" | Cj2m-cpu13 Firmware Search vendor "Omron" for product "Cj2m-cpu13 Firmware" | < 2.1 Search vendor "Omron" for product "Cj2m-cpu13 Firmware" and version " < 2.1" | - |
Affected
| in | Omron Search vendor "Omron" | Cj2m-cpu13 Search vendor "Omron" for product "Cj2m-cpu13" | - | - |
Safe
|
| Omron Search vendor "Omron" | Cj2m-cpu12 Firmware Search vendor "Omron" for product "Cj2m-cpu12 Firmware" | < 2.1 Search vendor "Omron" for product "Cj2m-cpu12 Firmware" and version " < 2.1" | - |
Affected
| in | Omron Search vendor "Omron" | Cj2m-cpu12 Search vendor "Omron" for product "Cj2m-cpu12" | - | - |
Safe
|
| Omron Search vendor "Omron" | Cj2m-cpu11 Firmware Search vendor "Omron" for product "Cj2m-cpu11 Firmware" | < 2.1 Search vendor "Omron" for product "Cj2m-cpu11 Firmware" and version " < 2.1" | - |
Affected
| in | Omron Search vendor "Omron" | Cj2m-cpu11 Search vendor "Omron" for product "Cj2m-cpu11" | - | - |
Safe
|
| Omron Search vendor "Omron" | Cj2m-md211 Firmware Search vendor "Omron" for product "Cj2m-md211 Firmware" | < 2.1 Search vendor "Omron" for product "Cj2m-md211 Firmware" and version " < 2.1" | - |
Affected
| in | Omron Search vendor "Omron" | Cj2m-md211 Search vendor "Omron" for product "Cj2m-md211" | - | - |
Safe
|
| Omron Search vendor "Omron" | Cj2m-md212 Firmware Search vendor "Omron" for product "Cj2m-md212 Firmware" | < 2.1 Search vendor "Omron" for product "Cj2m-md212 Firmware" and version " < 2.1" | - |
Affected
| in | Omron Search vendor "Omron" | Cj2m-md212 Search vendor "Omron" for product "Cj2m-md212" | - | - |
Safe
|
| Omron Search vendor "Omron" | Cs1d-cpu67s Firmware Search vendor "Omron" for product "Cs1d-cpu67s Firmware" | < 2.1 Search vendor "Omron" for product "Cs1d-cpu67s Firmware" and version " < 2.1" | - |
Affected
| in | Omron Search vendor "Omron" | Cs1d-cpu67s Search vendor "Omron" for product "Cs1d-cpu67s" | - | - |
Safe
|
| Omron Search vendor "Omron" | Cs1d-cpu65s Firmware Search vendor "Omron" for product "Cs1d-cpu65s Firmware" | < 2.1 Search vendor "Omron" for product "Cs1d-cpu65s Firmware" and version " < 2.1" | - |
Affected
| in | Omron Search vendor "Omron" | Cs1d-cpu65s Search vendor "Omron" for product "Cs1d-cpu65s" | - | - |
Safe
|
| Omron Search vendor "Omron" | Cs1d-cpu44s Firmware Search vendor "Omron" for product "Cs1d-cpu44s Firmware" | < 2.1 Search vendor "Omron" for product "Cs1d-cpu44s Firmware" and version " < 2.1" | - |
Affected
| in | Omron Search vendor "Omron" | Cs1d-cpu44s Search vendor "Omron" for product "Cs1d-cpu44s" | - | - |
Safe
|
| Omron Search vendor "Omron" | Cs1d-cpu42s Firmware Search vendor "Omron" for product "Cs1d-cpu42s Firmware" | < 2.1 Search vendor "Omron" for product "Cs1d-cpu42s Firmware" and version " < 2.1" | - |
Affected
| in | Omron Search vendor "Omron" | Cs1d-cpu42s Search vendor "Omron" for product "Cs1d-cpu42s" | - | - |
Safe
|
| Omron Search vendor "Omron" | Cs1d-cpu65p Firmware Search vendor "Omron" for product "Cs1d-cpu65p Firmware" | < 1.4 Search vendor "Omron" for product "Cs1d-cpu65p Firmware" and version " < 1.4" | - |
Affected
| in | Omron Search vendor "Omron" | Cs1d-cpu65p Search vendor "Omron" for product "Cs1d-cpu65p" | - | - |
Safe
|
| Omron Search vendor "Omron" | Cs1d-cpu67p Firmware Search vendor "Omron" for product "Cs1d-cpu67p Firmware" | < 1.4 Search vendor "Omron" for product "Cs1d-cpu67p Firmware" and version " < 1.4" | - |
Affected
| in | Omron Search vendor "Omron" | Cs1d-cpu67p Search vendor "Omron" for product "Cs1d-cpu67p" | - | - |
Safe
|
| Omron Search vendor "Omron" | Cs1d-cpu67h Firmware Search vendor "Omron" for product "Cs1d-cpu67h Firmware" | < 1.4 Search vendor "Omron" for product "Cs1d-cpu67h Firmware" and version " < 1.4" | - |
Affected
| in | Omron Search vendor "Omron" | Cs1d-cpu67h Search vendor "Omron" for product "Cs1d-cpu67h" | - | - |
Safe
|
| Omron Search vendor "Omron" | Cs1d-cpu65h Firmware Search vendor "Omron" for product "Cs1d-cpu65h Firmware" | < 1.4 Search vendor "Omron" for product "Cs1d-cpu65h Firmware" and version " < 1.4" | - |
Affected
| in | Omron Search vendor "Omron" | Cs1d-cpu65h Search vendor "Omron" for product "Cs1d-cpu65h" | - | - |
Safe
|
| Omron Search vendor "Omron" | Cs1h-cpu67h Firmware Search vendor "Omron" for product "Cs1h-cpu67h Firmware" | < 4.1 Search vendor "Omron" for product "Cs1h-cpu67h Firmware" and version " < 4.1" | - |
Affected
| in | Omron Search vendor "Omron" | Cs1h-cpu67h Search vendor "Omron" for product "Cs1h-cpu67h" | - | - |
Safe
|
| Omron Search vendor "Omron" | Cs1h-cpu66h Firmware Search vendor "Omron" for product "Cs1h-cpu66h Firmware" | < 4.1 Search vendor "Omron" for product "Cs1h-cpu66h Firmware" and version " < 4.1" | - |
Affected
| in | Omron Search vendor "Omron" | Cs1h-cpu66h Search vendor "Omron" for product "Cs1h-cpu66h" | - | - |
Safe
|
| Omron Search vendor "Omron" | Cs1h-cpu65h Firmware Search vendor "Omron" for product "Cs1h-cpu65h Firmware" | < 4.1 Search vendor "Omron" for product "Cs1h-cpu65h Firmware" and version " < 4.1" | - |
Affected
| in | Omron Search vendor "Omron" | Cs1h-cpu65h Search vendor "Omron" for product "Cs1h-cpu65h" | - | - |
Safe
|
| Omron Search vendor "Omron" | Cs1h-cpu64h Firmware Search vendor "Omron" for product "Cs1h-cpu64h Firmware" | < 4.1 Search vendor "Omron" for product "Cs1h-cpu64h Firmware" and version " < 4.1" | - |
Affected
| in | Omron Search vendor "Omron" | Cs1h-cpu64h Search vendor "Omron" for product "Cs1h-cpu64h" | - | - |
Safe
|
| Omron Search vendor "Omron" | Cs1h-cpu63h Firmware Search vendor "Omron" for product "Cs1h-cpu63h Firmware" | < 4.1 Search vendor "Omron" for product "Cs1h-cpu63h Firmware" and version " < 4.1" | - |
Affected
| in | Omron Search vendor "Omron" | Cs1h-cpu63h Search vendor "Omron" for product "Cs1h-cpu63h" | - | - |
Safe
|
| Omron Search vendor "Omron" | Cs1g-cpu45h Firmware Search vendor "Omron" for product "Cs1g-cpu45h Firmware" | < 4.1 Search vendor "Omron" for product "Cs1g-cpu45h Firmware" and version " < 4.1" | - |
Affected
| in | Omron Search vendor "Omron" | Cs1g-cpu45h Search vendor "Omron" for product "Cs1g-cpu45h" | - | - |
Safe
|
| Omron Search vendor "Omron" | Cs1g-cpu44h Firmware Search vendor "Omron" for product "Cs1g-cpu44h Firmware" | < 4.1 Search vendor "Omron" for product "Cs1g-cpu44h Firmware" and version " < 4.1" | - |
Affected
| in | Omron Search vendor "Omron" | Cs1g-cpu44h Search vendor "Omron" for product "Cs1g-cpu44h" | - | - |
Safe
|
| Omron Search vendor "Omron" | Cs1g-cpu43h Firmware Search vendor "Omron" for product "Cs1g-cpu43h Firmware" | < 4.1 Search vendor "Omron" for product "Cs1g-cpu43h Firmware" and version " < 4.1" | - |
Affected
| in | Omron Search vendor "Omron" | Cs1g-cpu43h Search vendor "Omron" for product "Cs1g-cpu43h" | - | - |
Safe
|
| Omron Search vendor "Omron" | Cs1g-cpu42h Firmware Search vendor "Omron" for product "Cs1g-cpu42h Firmware" | < 4.1 Search vendor "Omron" for product "Cs1g-cpu42h Firmware" and version " < 4.1" | - |
Affected
| in | Omron Search vendor "Omron" | Cs1g-cpu42h Search vendor "Omron" for product "Cs1g-cpu42h" | - | - |
Safe
|