CVE-2014-2369
Omron NS5, NS8, NS10, NS12, NS15 HMI Terminals 8.1xx-8.68x - Authenticated Cross-Site Request Forgery
Title source: llmDescription
Cross-site request forgery (CSRF) vulnerability in the web application on Omron NS5, NS8, NS10, NS12, and NS15 HMI terminals 8.1xx through 8.68x allows remote authenticated users to hijack the authentication of unspecified victims via unknown vectors.
References (3)
Core 3
Core References
Third Party Advisory, US Government Resource
http://ics-cert.us-cert.gov/advisories/ICSA-14-203-01
Various Sources
https://automation.omron.com/en/us/products/
Third Party Advisory, US Government Resource
https://www.cisa.gov/news-events/ics-advisories/icsa-14-203-01
Scores
EPSS
0.0059
EPSS Percentile
44.1%
Details
CWE
CWE-352
Status
published
Products (12)
Omron/NS10
8.1xx - 8.68x
omron/ns10_hmi_terminal
Omron/NS12
8.1xx - 8.68x
omron/ns12_hmi_terminal
Omron/NS15
8.1xx - 8.68x
omron/ns15_hmi_terminal
Omron/NS5
8.1xx - 8.68x
omron/ns5_hmi_terminal
Omron/NS8
8.1xx - 8.68x
omron/ns8_hmi_terminal
... and 2 more
Published
Jul 24, 2014
Tracked Since
Feb 18, 2026