Advisory Details Date: February 16th, 2022 Title: Omron CX-One SDD File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability IDs: ZDI-22-373, ZDI-CAN-14038 CVE ID: CVE-2022-21137 CVSS Score: 7.8 (AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H) Affected Vendors: Omron Affected Products: CX-One Vulnerability Details This vulnerability allows remote attackers to execute arbitrary code on affected installations of Omron CX-One. User interaction is required to exploit this vulnerability, where the target must visit a malicious page or open a malicious file. The flaw exists in the parsing of SDD files in the CXDrive module due to improper validation of user-supplied data, leading to a read past the allocated buffer. Additional Details Omron has issued an update to correct this vulnerability. More details can be found at: https://www.cisa.gov/uscert/ics/advisories/icsa-22-006-01 Disclosure Timeline 2021-07-20: Vulnerability reported to vendor 2022-02-16: Coordinated public release of advisory Credit xina1i