#VU64802 Insufficient verification of data authenticity in Omron products - CVE-2022-31207

Cybersecurity Help s.r.o.

Published: 2022-06-29

Vulnerability identifier: #VU64802

Vulnerability risk: Low

CVSSv4.0: 4.8 [CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-31207

CWE-ID: CWE-345

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
SYSMAC CS1
Hardware solutions / Routers & switches, VoIP, GSM, etc
SYSMAC CJ2M
Hardware solutions / Routers & switches, VoIP, GSM, etc
SYSMAC CJ2H
Hardware solutions / Routers & switches, VoIP, GSM, etc
SYSMAC CP1E
Hardware solutions / Routers & switches, VoIP, GSM, etc
SYSMAC CP1H
Hardware solutions / Routers & switches, VoIP, GSM, etc
SYSMAC CP1L
Hardware solutions / Routers & switches, VoIP, GSM, etc

Vendor: Omron

Description

The vulnerability allows a remote user to compromsie the target system.

The vulnerability exists due to the logic that is downloaded to the PLC is not cryptographically authenticated. A remote administrator can execute arbitrary object code commands on the defined software logic.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

SYSMAC CS1: before 4.1

SYSMAC CJ2M: before 2.1

SYSMAC CJ2H: before 1.5

SYSMAC CP1E: before 1.30

SYSMAC CP1H: before 1.30

SYSMAC CP1L: before 1.10

External links
https://ics-cert.us-cert.gov/advisories/icsa-22-179-02

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated privileged user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in Omron SYSMAC CS/CJ/CP Series and NJ/NX Series