CVE-2014-2369

Name of the Vulnerable Software and Affected Versions Omron NS5, NS8, NS10, NS12, and NS15 HMI terminals versions 8.1xx through 8.68x

Description A cross-site request forgery (CSRF) issue exists in the web application, allowing remote authenticated users to hijack the authentication of unspecified victims. The exact vectors used for exploitation are not specified.

Recommendations For Omron NS5, NS8, NS10, NS12, and NS15 HMI terminals versions 8.1xx through 8.68x, consider implementing additional security measures to prevent CSRF attacks, such as validating request tokens, until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.