CVE-2024-12083
Published: Jan 14, 2025
Modified: May 6, 2025
CVSS v3.1
6.6
Description
Path Traversal Vulnerabilities (CWE-22) exist in NJ/NX-series Machine Automation Controllers. An attacker may use these vulnerabilities to perform unauthorized access and to execute unauthorized code remotely to the controller products.
| Vendor | Product | Versions |
|---|---|---|
OMRON Corporation | Machine Automation Controller NJ-series | affected NJ101-[][][][] Ver.1.64.05 and lower |
OMRON Corporation | Machine Automation Controller NJ-series | affected NJ301-[][][][] Ver.1.64.05 and lower |
OMRON Corporation | Machine Automation Controller NJ-series | affected NJ501-1[]0[] Ver.1.64.05 and lower |
OMRON Corporation | Machine Automation Controller NJ-series | affected NJ501-1[]2[] Ver.1.64.04 and lower |
OMRON Corporation | Machine Automation Controller NJ-series | affected NJ501-1340 Ver.1.64.04 and lower |
OMRON Corporation | Machine Automation Controller NJ-series | affected NJ501-4[][][] Ver.1.64.04 and lower |
OMRON Corporation | Machine Automation Controller NJ-series | affected NJ501-5300 Ver.1.64.04 and lower |
OMRON Corporation | Machine Automation Controller NJ-series | affected NJ501-R[][][] Ver.1.64.04 and lower |
OMRON Corporation | Machine Automation Controller NX-series | affected NX1P2-[][][][][][] Ver.1.64.04 and lower |
OMRON Corporation | Machine Automation Controller NX-series | affected NX1P2-[][][][][][]1 Ver.1.64.04 and lower |
OMRON Corporation | Machine Automation Controller NX-series | affected NX102-[][]0[] Ver.1.64.07 and lower |
OMRON Corporation | Machine Automation Controller NX-series | affected NX102-[][]2[] Ver.1.64.07 and lower |
OMRON Corporation | Machine Automation Controller NX-series | affected NX502-[][][][] Ver.1.66.03 and lower |
OMRON Corporation | Machine Automation Controller NX-series | affected NX701-[][][][] Ver.1.35.04 and lower |
OMRON Corporation | Machine Automation Controller NX-series | affected NX-EIP201 Ver.1.01.02 and lower |
Weaknesses (CWE)
CVSS v3.1 Details
CVSS v3.1 Vector
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now