Omron Corp. mitigated the multiple vulnerabilities in the NS series of human-machine interface (HMI) terminals, according to a report on ICS-CERT.
These vulnerabilities, discovered by researcher Joel Sevilleja Febrer of S2 Grupo, are remotely exploitable.
The following Omron Corporation products suffer from the issues:
• NS15 Version 8.1xx – 8.68x,
• NS12 Version 8.1xx – 8.68x,
• NS10 Version 8.1xx – 8.68x,
• NS8 Version 8.1xx – 8.68x, and
• NS5 Version 8.1xx – 8.68x.
Successful exploitation of these vulnerabilities could allow an attacker to modify device configuration and expose sensitive information.
Omron Corporation is an international company headquartered in Kyoto, Japan.
The affected products are NS series HMI terminals. The NS series HMI terminals have a global marketing channel, however, Omron said the vulnerabilities only affect their overseas market. The NS series HMI terminals see action across several sectors including critical manufacturing and healthcare and public health.
One of the vulnerabilities is cross-site request forgery where the web application receives a request from a client without adequately verifying the request ended up intentionally sent. This could allow an attacker to execute commands thereby compromising the system and enabling modifications to the system’s configuration.
CVE-2014-2369 is the case number assigned to this vulnerability, which has a CVSS v2 base score of 4.6.
There is a cross-site scripting issue where the web application stores untrusted data that can end up read back into the application and included in dynamic content.
CVE-2014-2370 is the case number assigned to this vulnerability, which has a CVSS v2 base score of 4.0.
While no known public exploits specifically target these vulnerabilities, an attacker with a high to moderate skill would be able to exploit these vulnerabilities.
Omron Corporation produced update, Version 8.69x for Japan and Version 8.7x for other countries, that mitigates the vulnerabilities. The updates for the NS series of HMI terminals can be downloaded at the following locations: