- Description
- Omron CX-One CX-Programmer before 9.6, CJ2M PLC devices before 2.1, and CJ2H PLC devices before 1.5 use a reversible format for password storage in object files on Compact Flash cards, which makes it easier for local users to obtain sensitive information by reading a file.
- Source
- ics-cert@hq.dhs.gov
- NVD status
- Analyzed
CVSS 2.0
- Type
- Primary
- Base score
- 2.1
- Impact score
- 2.9
- Exploitability score
- 3.9
- Vector string
- AV:L/AC:L/Au:N/C:P/I:N/A:N
- nvd@nist.gov
- CWE-200
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:omron:cx-programmer:9.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "119F2C44-EAF8-43D9-A5AF-1F0B71833CA1"
},
{
"criteria": "cpe:2.3:h:omron:cj2h_plc:1.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "57822DC2-DDC7-426A-B2A4-90B9A7BBA475"
},
{
"criteria": "cpe:2.3:h:omron:cj2m_plc:2.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "673D8851-9502-4D28-939C-BEC804B90DBD"
}
],
"operator": "OR"
}
]
}
]