Description
In Omron PLC CJ series, all versions, and Omron PLC CS series, all versions, an attacker could monitor traffic between the PLC and the controller and replay requests that could result in the opening and closing of industrial valves.
Scores
CVSS v3
8.1
EPSS
0.0028
EPSS Percentile
50.9%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:H
Details
CWE
CWE-294
Status
published
Products (2)
omron/plc_cj_firmware
omron/plc_cs_firmware
Published
Dec 16, 2019
Tracked Since
Feb 18, 2026