CVE-2024-33687

HIGH

Omron NJ and NX Series CPU Unit - Insufficient Verification of Data Authenticity

Title source: llm

Description

Insufficient verification of data authenticity issue exists in NJ Series CPU Unit all versions and NX Series CPU Unit all versions. If a user program in the affected product is altered, the product may not be able to detect the alteration.

References (2)

Core 2

Core References

Third Party Advisory

https://jvn.jp/en/vu/JVNVU92504444/

Vendor Advisory

https://www.fa.omron.co.jp/product/security/assets/pdf/en/OMSR-2024-004_en.pdf

Scores

CVSS v3 7.5

EPSS 0.0019

EPSS Percentile 9.2%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-345

Status published

Products (50)

omron/nj-pa3001_firmware

omron/nj-pd3001_firmware

omron/nj101-1000_firmware

omron/nj101-1020_firmware

omron/nj101-9000_firmware

omron/nj101-9020_firmware

omron/nj301-1100_firmware

omron/nj301-1200_firmware

omron/nj501-1300_firmware

omron/nj501-1320_firmware

... and 40 more

Published Jun 24, 2024

Tracked Since Feb 18, 2026