Vulnerability Description
Path traversal vulnerability exists in Machine Automation Controller NJ Series and Machine Automation Controller NX Series. An arbitrary file in the affected product may be accessed or arbitrary code may be executed by processing a specially crafted request sent from a remote attacker with an administrative privilege. As for the details of the affected product names/versions, see the information provided by the vendor under [References] section.
CVSS Score
HIGH
Related Weaknesses (CWE)
References
- https://jvn.jp/en/vu/JVNVU95852116/index.html
- https://www.fa.omron.co.jp/product/security/assets/pdf/en/OMSR-2024-001_en.pdf
- https://www.fa.omron.co.jp/product/security/assets/pdf/ja/OMSR-2024-001_ja.pdf
- https://jvn.jp/en/vu/JVNVU95852116/index.html
- https://www.fa.omron.co.jp/product/security/assets/pdf/en/OMSR-2024-001_en.pdf
- https://www.fa.omron.co.jp/product/security/assets/pdf/ja/OMSR-2024-001_ja.pdf
FAQ
What is CVE-2024-27121?
CVE-2024-27121 is a vulnerability with a CVSS score of 7.2 (HIGH). Path traversal vulnerability exists in Machine Automation Controller NJ Series and Machine Automation Controller NX Series. An arbitrary file in the affected product may be accessed or arbitrary code ...
How severe is CVE-2024-27121?
CVE-2024-27121 has been rated HIGH with a CVSS base score of 7.2/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-27121?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.