CVE-2019-13533

Summary

In Omron PLC CJ series, all versions, and Omron PLC CS series, all versions, an attacker could monitor traffic between the PLC and the controller and replay requests that could result in the opening and closing of industrial valves.

Affected Software

VendorProductVersion RangeStatus
n/aOmron PLC CJ and CS SeriesOmron PLC CJ series, all versions, Omron PLC CS series, all versionsaffected

Weaknesses

  • CWE-294: AUTHENTICATION BYPASS BY CAPTURE-REPLAY CWE-294

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References