Omron CX-Position

Plan Patch7.8ICS-CERT ICSA-22-088-02Mar 29, 2022

Attack VectorLocal

Auth RequiredNone

ComplexityLow

User InteractionRequired

Summary

Omron CX-Position versions 2.5.3 and earlier contain memory corruption vulnerabilities (buffer overflow, use-after-free) in NCI file parsing. Successful exploitation when parsing a malicious NCI file could allow code execution on the affected system.

What this means

What could happen

An attacker with local access could execute arbitrary code on a CX-Position workstation by crafting a malicious NCI file, potentially compromising engineering settings and process parameters for motion control systems.

Who's at risk

This affects engineering teams and operators who use Omron CX-Position software to program and configure motion control systems. Typical users include automation engineers managing Omron motion controllers in manufacturing, conveyor systems, and robotic applications.

How it could be exploited

An attacker must first obtain local access to a machine running CX-Position and deliver a malicious NCI file to the user. When the user opens or processes the NCI file in CX-Position, the memory corruption vulnerabilities are triggered, allowing code execution in the context of the application.

Prerequisites

Local access to CX-Position workstation
User interaction to open or parse a malicious NCI file
CX-Position version 2.5.3 or earlier installed

no patch availablerequires user interactionaffects engineering workstationsmemory corruption vulnerabilities

Exploitability

Low exploit probability (EPSS 0.7%)

Affected products (1)

ProductAffected VersionsFix Status

CX-Position:≤ 2.5.32.5.4

Remediation & Mitigation

0/4

Do now

0/1

WORKAROUNDRestrict file access and implement controls to prevent users from opening untrusted NCI files from external sources

Schedule — requires maintenance window

0/1

Patching may require device reboot — plan for process interruption

HOTFIXUpdate CX-Position to version 2.5.4 or later if available through Omron Auto Update or by contacting Omron technical support

Long-term hardening

0/2

HARDENINGImplement network segmentation to limit access to engineering workstations running CX-Position from general user networks

HARDENINGEstablish a file validation and scanning process for NCI files before they are processed by CX-Position

CVEs (4)

CVE-2022-26419 CVE-2022-25959 CVE-2022-26417 CVE-2022-26022

View full CISA ICS-CERT advisory

↑↓ Navigate · Esc Close

API: /api/v1/advisories/eb00580b-7a5f-48c4-b686-f00399e1f3ce