CVE-2018-7515

Summary

In Omron CX-Supervisor Versions 3.30 and prior, access of uninitialized pointer vulnerabilities can be exploited when CX Supervisor indirectly calls an initialized pointer when parsing malformed packets.

Affected Software

VendorProductVersion RangeStatus
ICS-CERTBeaconMedæs TotalAlert Scroll Medical Air Systems web applicationAll versions prior to version 4107600010.23affected

Weaknesses

  • CWE-256: UNPROTECTED STORAGE OF CREDENTIALS CWE-256

ADP Enrichment

CVE Program Container

Additional References

References