CVE-2019-6556

Name of the Vulnerable Software and Affected Versions Omron CX-Programmer versions 9.70 and prior Common Components versions January 2019 and prior

Description The issue arises when the application processes project files, specifically due to a failure in checking references to freed memory. This can be exploited by an attacker using a specially crafted project file, potentially leading to the execution of code under the application's privileges.

Recommendations For Omron CX-Programmer versions 9.70 and prior, consider disabling the project file processing feature until a patch is available. For Common Components versions January 2019 and prior, restrict access to project file parsing functionality to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.