CVE-2022-2979

Name of the Vulnerable Software and Affected Versions CX-One (affected versions not specified)

Description The issue is related to a use-after-free vulnerability in the CX-Programmer development environment, part of the CX-One software suite used for programming and configuring Omron PLCs. This vulnerability could allow an attacker to execute arbitrary code by opening a specially crafted file, which may cause the affected product to fail to release its memory reference.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.