This page lists publicly disclosed CVE vulnerabilities affecting omron cx-supervisor (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2021-20836 | Out-of-bounds read vulnerability in CX-Supervisor v4.0.0.13 and v4.0.0.16 allows an attacker with administrative privileges to cause information disclosure and/or arbitrary code execution by opening a specially crafted SCS project files. | [email protected] | 6.5 | 0.78% | 2021-10-18 | 2026-06-16 |
| CVE-2019-18251 | In Omron CX-Supervisor, Versions 3.5 (12) and prior, Omron CX-Supervisor ships with Teamviewer Version 5.0.8703 QS. This version of Teamviewer is vulnerable to an obsolete function vulnerability requiring user interaction to exploit. | [email protected] | 8.8 | 1.74% | 2019-11-25 | 2026-06-16 |
| CVE-2018-19020 | When CX-Supervisor (Versions 3.42 and prior) processes project files and tampers with the value of an offset, an attacker can force the application to read a value outside of an array. | [email protected] | 5.0 | 0.83% | 2019-02-12 | 2026-06-16 |
| CVE-2018-19018 | An access of uninitialized pointer vulnerability in CX-Supervisor (Versions 3.42 and prior) could lead to type confusion when processing project files. An attacker could use a specially crafted project file to exploit and execute code under the privileges of the application. | [email protected] | 7.3 | 1.16% | 2019-02-12 | 2026-06-16 |
| CVE-2018-19015 | An attacker could inject commands to launch programs and create, write, and read files on CX-Supervisor (Versions 3.42 and prior) through a specially crafted project file. An attacker could exploit this to execute code under the privileges of the application. | [email protected] | 7.3 | 1.48% | 2019-01-28 | 2026-06-16 |
| CVE-2018-19019 | A type confusion vulnerability exists when processing project files in CX-Supervisor (Versions 3.42 and prior). An attacker could use a specially crafted project file to exploit and execute code under the privileges of the application. | [email protected] | 7.3 | 1.50% | 2019-01-22 | 2026-06-16 |
| CVE-2018-19017 | Several use after free vulnerabilities have been identified in CX-Supervisor (Versions 3.42 and prior). When processing project files, the application fails to check if it is referencing freed memory. An attacker could use a specially crafted project file to exploit and execute code under the privileges of the application. | [email protected] | 8.8 | 2.40% | 2019-01-22 | 2026-06-16 |
| CVE-2018-19013 | An attacker could inject commands to delete files and/or delete the contents of a file on CX-Supervisor (Versions 3.42 and prior) through a specially crafted project file. | [email protected] | 5.0 | 0.75% | 2019-01-22 | 2026-06-16 |
| CVE-2018-19011 | CX-Supervisor (Versions 3.42 and prior) can execute code that has been injected into a project file. An attacker could exploit this to execute code under the privileges of the application. | [email protected] | 8.8 | 2.42% | 2019-01-22 | 2026-06-16 |
| CVE-2018-17913 | A type confusion vulnerability exists when processing project files in Omron CX-Supervisor Versions 3.4.1.0 and prior, which may allow an attacker to execute code in the context of the application. | [email protected] | 7.8 | 1.63% | 2018-11-05 | 2026-06-16 |
| CVE-2018-17909 | When processing project files in Omron CX-Supervisor Versions 3.4.1.0 and prior, the application fails to check if it is referencing freed memory, which may allow an attacker to execute code under the context of the application. | [email protected] | 7.8 | 1.63% | 2018-11-05 | 2026-06-16 |
| CVE-2018-17907 | When processing project files in Omron CX-Supervisor Versions 3.4.1.0 and prior and tampering with the value of an offset, an attacker can force the application to read a value outside of an array. | [email protected] | 3.3 | 0.89% | 2018-11-05 | 2026-06-16 |
| CVE-2018-17905 | When processing project files in Omron CX-Supervisor Versions 3.4.1.0 and prior and tampering with a specific byte, memory corruption may occur within a specific object. | [email protected] | 7.8 | 1.07% | 2018-11-05 | 2026-06-16 |
| CVE-2018-7525 | In Omron CX-Supervisor Versions 3.30 and prior, processing a malformed packet by a certain executable may cause an untrusted pointer dereference vulnerability. | [email protected] | 5.3 | 0.35% | 2018-03-21 | 2026-06-16 |
| CVE-2018-7523 | In Omron CX-Supervisor Versions 3.30 and prior, parsing malformed project files may cause a double free vulnerability. | [email protected] | 5.3 | 0.35% | 2018-03-21 | 2026-06-16 |
| CVE-2018-7521 | In Omron CX-Supervisor Versions 3.30 and prior, use after free vulnerabilities can be exploited when CX Supervisor parses a specially crafted project file. | [email protected] | 5.3 | 0.35% | 2018-03-21 | 2026-06-16 |
| CVE-2018-7519 | In Omron CX-Supervisor Versions 3.30 and prior, parsing malformed project files may cause a heap-based buffer overflow. | [email protected] | 5.3 | 0.36% | 2018-03-21 | 2026-06-16 |
| CVE-2018-7517 | In Omron CX-Supervisor Versions 3.30 and prior, parsing malformed project files may cause an out of bounds vulnerability. | [email protected] | 5.3 | 0.35% | 2018-03-21 | 2026-06-16 |
| CVE-2018-7515 | In Omron CX-Supervisor Versions 3.30 and prior, access of uninitialized pointer vulnerabilities can be exploited when CX Supervisor indirectly calls an initialized pointer when parsing malformed packets. | [email protected] | 5.3 | 0.30% | 2018-03-21 | 2026-06-16 |
| CVE-2018-7513 | In Omron CX-Supervisor Versions 3.30 and prior, parsing malformed project files may cause a stack-based buffer overflow. | [email protected] | 5.3 | 0.36% | 2018-03-21 | 2026-06-16 |