Path Traversal in Omron Corporation Machine Automation Controller Nj-series
CVE-2024-12083
Path Traversal Vulnerabilities (CWE-22) exist in NJ/NX-series Machine Automation Controllers. An attacker may use these vulnerabilities to perform unauthorized access and to execute unauthorized code remotely to the controller products.
Vulnerability class: Path Traversal (Directory Traversal)
EPSS: 0.006 (46.0th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 6.6 (Medium). Vector: CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H.
Affected products
- Omron Corporation Machine Automation Controller Nj-series — versions NJ101-[][][][] Ver.1.64.05 and lower, NJ301-[][][][] Ver.1.64.05 and lower, NJ501-1[]0[] Ver.1.64.05 and lower
- Omron Corporation Machine Automation Controller Nx-series — versions NX1P2-[][][][][][] Ver.1.64.04 and lower, NX1P2-[][][][][][]1 Ver.1.64.04 and lower, NX102-[][]0[] Ver.1.64.07 and lower
Weakness classification (CWE)
References
Frequently asked questions
- What is CVE-2024-12083?
- CVE-2024-12083 is a medium-severity vulnerability in Omron Corporation Machine Automation Controller Nj-series, classified under Path Traversal. CVSS score: 6.6/10. Published 2025-01-14.
- How severe is CVE-2024-12083?
- Medium severity. CVSS v3 base score is 6.6 out of 10.