CVE-2019-13533
8.1
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:H
Summary
In Omron PLC CJ series, all versions, and Omron PLC CS series, all versions, an attacker could monitor traffic between the PLC and the controller and replay requests that could result in the opening and closing of industrial valves.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | Omron PLC CJ and CS Series | Omron PLC CJ series, all versions, Omron PLC CS series, all versions | affected |
Weaknesses
- CWE-294: AUTHENTICATION BYPASS BY CAPTURE-REPLAY CWE-294
ADP Enrichment
CVE Program Container
Additional References
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.