Release	Business	No	Advisory
April 15, 2026	Social Systems	OMSR-2026-001	Vulnerability Related to an Uncontrolled Search Path Element in a UPS Management Application
November 17, 2025	Factory Automation	OMSR-2025-006	Out-of-bounds Read vulnerability in IPC platform NY-series
September 17, 2025	Social Systems	OMSR-2025-005	Vulnerability caused by unquoted file paths of Windows services registered by the Uninterruptible Power Supply (UPS) management application
July 14, 2025	Factory Automation	OMSR-2025-004	Least Privilege Violation Vulnerability in the communications functions of NJ/NX-series Machine Automation Controllers
February 17, 2025 (Last modified) March 10, 2025	Factory Automation	OMSR-2025-003	Out-of-bounds Read vulnerability in CX-Programmer
January 14, 2025	Factory Automation	OMSR-2025-002	Vulnerability Report on Improper Restriction of XML External Entity Reference in NB-Designer
January 14, 2025 (Last modified) May 7, 2025	Factory Automation	OMSR-2025-001	Path Traversal Vulnerabilities in NJ/NX-series Machine Automation Controllers
November 1, 2024	Factory Automation	OMSR-2024-007	Multiple vulnerabilities caused by OpenSSL in CS/CJ-series Programmable Controllers EtherNet/IP Unit
November 1, 2024	Factory Automation	OMSR-2024-006	Incorrect Authorization (CWE-863) vulnerability in Sysmac Studio Software
May 27, 2024	Factory Automation	OMSR-2024-005	Multiple vulnerabilities caused by OpenSSL in NJ/NX-series Machine Automation Controllers
May 27, 2024	Factory Automation	OMSR-2024-004	Insufficient Verification of Data Authenticity vulnerability in the NJ/NX-series Mach
April 22, 2024 (Last modified) May 7, 2025	Factory Automation	OMSR-2024-003	Out-of-bounds Read vulnerability in CX-Programmer
April 22, 2024	Factory Automation	OMSR-2024-002	Free of Pointer not at Start of Buffer vulnerability in Common Modules of Sysmac Studio and CX-One
March 7, 2024 (Last modified) May 27, 2024	Factory Automation	OMSR-2024-001	Path Traversal vulnerability in NJ/NX-series Machine Automation Controllers
October 23, 2023	Factory Automation	OMSR-2023-011	Vulnerability Report on Improper Restriction of XML External Entity Reference in CX-Designer
September 19, 2023 (Last modified) November 13, 2023	Factory Automation	OMSR-2023-010	Improper Control of Interaction Frequency in FINS protocol between the CS/CJ/CP-series Programable Controllers
September 19, 2023	Factory Automation	OMSR-2023-009	Improper Authorization Vulnerability in Automation Software Sysmac Studio
September 19, 2023	Factory Automation	OMSR-2023-008	Pass Traversal Vulnerability in Automation Software Sysmac Studio and NX-IO Configurator
August 1, 2023	Factory Automation	OMSR-2023-007	NicheStack TCP/IP stack Vulnerabilities on EtherNet/IP™ option board for Multi-function Compact Inverter 3G3MX2
August 1, 2023 (Last modified) November 13, 2023	Factory Automation	OMSR-2023-006	Vulnerability that could cause a Denial of Service (DoS) state in the built-in EtherNet/IP™ port of the CJ Series CJ2 CPU unit and the CS/CJ series EtherNet/IP™ unit
August 1, 2023	Factory Automation	OMSR-2023-005	Out-of-bounds Read, Use After Free and Heap-based Buffer Overflow Vulnerabilities in CX-Programmer
April 24, 2023 (Last modified) August 1, 2023	Factory Automation	OMSR-2023-004	Support tool CX-Drive for inverter/servo heap-based buffer overflow vulnerability
April 17, 2023 (Last modified) September 19, 2023	Factory Automation	OMSR-2023-003	About Known Issues in the FINS Protocol Implemented in Omron Products
April 17, 2023	Factory Automation	OMSR-2023-002	Missing Authentication Vulnerabilities related to file system of CS/CJ-series Programmable Controllers
March 13, 2023	Factory Automation	OMSR-2023-001	Vulnerabilities related to bypass of user memory protection function of CS/CJ/CP-series Programmable Controllers
January 24, 2023	Factory Automation	JVNVU#94200979	Improper restriction of XML external entity reference (XXE) vulnerability in OMRON CX-Motion Pro
January 11, 2023	Factory Automation	JVNVU#91744508	Access of uninitialized pointer vulnerability in OMRON CX-Motion-MCH
January 11, 2023	Factory Automation	JVNVU#97575890	Active debug code vulnerability in OMRON CP1L-EL20DR-D
December 22, 2022	Factory Automation	ICSA-22-356-04	Omron CX-Programmer
December 19, 2022	Factory Automation	JVNVU#92689335	Use-after-free vulnerability in Omron CX-Drive
October 04, 2022	Factory Automation	ICSA-22-277-04	OMRON CX-Programmer
August 30, 2022	Factory Automation	ICSA-22-242-09	Omron CX-Programmer
July 01, 2022	Factory Automation	OMSR-2022-002	Malicious program execution vulnerability in NJ/NXseries Machine Automation Controllers
July 01, 2022	Factory Automation	OMSR-2022-001	Authentication bypass vulnerabilities in communications functions of NJ/NX-series Machine Automation Controllers
June 28, 2022	Factory Automation	ICSA-22-179-02	Omron SYSMAC CS/CJ/CP Series and NJ/NX Series
March 29, 2022	Factory Automation	ICSA-22-088-02	Omron CX-Position
March 04, 2022	Factory Automation	JVNVU#90121984	Multiple vulnerabilities in OMRON CX-Programmer
January 06, 2022	Factory Automation	ICSA-22-006-01	Omron CX-One
October 15, 2021	Factory Automation	JVNVU#90041391	OMRON CX-Supervisor vulnerable to out-of-bounds read
May 11, 2021	Factory Automation	ICSA-21-131-01	Omron CX-One
January 07, 2021	Factory Automation	ICSA-21-007-02	Omron CX-One
March 03, 2020	Factory Automation	ICSA-20-063-03	Omron PLC CJ Series
December 19, 2019	Factory Automation	ICSA-19-318-04	Omron CX-Supervisor
December 12, 2019	Factory Automation	ICSA-19-346-02	Omron PLC CJ and CS Series
December 12, 2019	Factory Automation	ICSA-19-346-03	Omron PLC CJ, CS and NJ Series
November 05, 2019	Factory Automation	ICSA-19-309-01	Omron CX-Supervisor
November 05, 2019	Factory Automation	ICSA-19-134-01	Omron Network Configurator for DeviceNet
April 04, 2019	Factory Automation	ICSA-19-094-01	Omron CX-Programmer
January 17, 2019	Factory Automation	ICSA-19-017-01	Omron CX-Supervisor
January 10, 2019	Factory Automation	ICSA-19-010-02	Omron CX-One CX-Protocol
December 04, 2018	Factory Automation	ICSA-18-338-01	Omron CX-One
October 17, 2018	Factory Automation	ICSA-18-290-01	Omron CX-Supervisor
April 10, 2018	Factory Automation	ICSA-18-100-02	Omron CX-One
March 13, 2018	Factory Automation	ICSA-18-072-01	Omron CX-Supervisor
October 01, 2015	Factory Automation	ICSA-15-274-01	Omron Multiple Product Vulnerabilities
July 22, 2014	Factory Automation	ICSA-14-203-01	Omron NS Series HMI Vulnerabilities

Vulnerability information