Description
FINS (Factory Interface Network Service) is a message communication protocol, which is designed to be used in closed FA (Factory Automation) networks, and is used in FA networks composed of OMRON products. Multiple OMRON products that implement FINS protocol contain following security issues -- (1)Plaintext communication, and (2)No authentication required. When FINS messages are intercepted, the contents may be retrieved. When arbitrary FINS messages are injected, any commands may be executed on, or the system information may be retrieved from, the affected device. Affected products and versions are as follows: SYSMAC CS-series CPU Units, all versions, SYSMAC CJ-series CPU Units, all versions, SYSMAC CP-series CPU Units, all versions, SYSMAC NJ-series CPU Units, all versions, SYSMAC NX1P-series CPU Units, all versions, SYSMAC NX102-series CPU Units, all versions, and SYSMAC NX7 Database Connection CPU Units (Ver.1.16 or later)
Published: 2023-06-19
Score: 9.8 Critical
EPSS: 1.7% Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Analysis and contextual insights are available on OpenCVE Cloud.

Remediation

No vendor fix or workaround currently provided.

Additional remediation guidance may be available on OpenCVE Cloud.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
EUVD EUVD EUVD-2023-31172 FINS (Factory Interface Network Service) is a message communication protocol, which is designed to be used in closed FA (Factory Automation) networks, and is used in FA networks composed of OMRON products. Multiple OMRON products that implement FINS protocol contain following security issues -- (1)Plaintext communication, and (2)No authentication required. When FINS messages are intercepted, the contents may be retrieved. When arbitrary FINS messages are injected, any commands may be executed on, or the system information may be retrieved from, the affected device. Affected products and versions are as follows: SYSMAC CS-series CPU Units, all versions, SYSMAC CJ-series CPU Units, all versions, SYSMAC CP-series CPU Units, all versions, SYSMAC NJ-series CPU Units, all versions, SYSMAC NX1P-series CPU Units, all versions, SYSMAC NX102-series CPU Units, all versions, and SYSMAC NX7 Database Connection CPU Units (Ver.1.16 or later)
History

Tue, 24 Dec 2024 17:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Subscriptions

Omron Cj2h-cpu64 Cj2h-cpu64-eip Cj2h-cpu64-eip Firmware Cj2h-cpu64 Firmware Cj2h-cpu65 Cj2h-cpu65-eip Cj2h-cpu65-eip Firmware Cj2h-cpu65 Firmware Cj2h-cpu66 Cj2h-cpu66-eip Cj2h-cpu66-eip Firmware Cj2h-cpu66 Firmware Cj2h-cpu67 Cj2h-cpu67-eip Cj2h-cpu67-eip Firmware Cj2h-cpu67 Firmware Cj2h-cpu68 Cj2h-cpu68-eip Cj2h-cpu68-eip Firmware Cj2h-cpu68 Firmware Cj2m-cpu11 Cj2m-cpu11 Firmware Cj2m-cpu12 Cj2m-cpu12 Firmware Cj2m-cpu13 Cj2m-cpu13 Firmware Cj2m-cpu14 Cj2m-cpu14 Firmware Cj2m-cpu15 Cj2m-cpu15 Firmware Cj2m-cpu31 Cj2m-cpu31 Firmware Cj2m-cpu32 Cj2m-cpu32 Firmware Cj2m-cpu33 Cj2m-cpu33 Firmware Cj2m-cpu34 Cj2m-cpu34 Firmware Cj2m-cpu35 Cj2m-cpu35 Firmware Cj2m-md211 Cj2m-md211 Firmware Cj2m-md212 Cj2m-md212 Firmware Cp1e-e10dr-a Cp1e-e10dr-a Firmware Cp1e-e10dr-d Cp1e-e10dr-d Firmware Cp1e-e10dt-a Cp1e-e10dt-a Firmware Cp1e-e10dt-d Cp1e-e10dt-d Firmware Cp1e-e10dt1-a Cp1e-e10dt1-a Firmware Cp1e-e10dt1-d Cp1e-e10dt1-d Firmware Cp1e-e14dr-a Cp1e-e14dr-a Firmware Cp1e-e14sdr-a Cp1e-e14sdr-a Firmware Cp1e-e20dr-a Cp1e-e20dr-a Firmware Cp1e-e20sdr-a Cp1e-e20sdr-a Firmware Cp1e-e30dr-a Cp1e-e30dr-a Firmware Cp1e-e30sdr-a Cp1e-e30sdr-a Firmware Cp1e-e40dr-a Cp1e-e40dr-a Firmware Cp1e-e40sdr-a Cp1e-e40sdr-a Firmware Cp1e-e60sdr-a Cp1e-e60sdr-a Firmware Cp1e-n14dr-a Cp1e-n14dr-a Firmware Cp1e-n14dr-d Cp1e-n14dr-d Firmware Cp1e-n14dt-a Cp1e-n14dt-a Firmware Cp1e-n14dt-d Cp1e-n14dt-d Firmware Cp1e-n14dt1-a Cp1e-n14dt1-a Firmware Cp1e-n14dt1-d Cp1e-n14dt1-d Firmware Cp1e-n20dr-a Cp1e-n20dr-a Firmware Cp1e-n20dr-d Cp1e-n20dr-d Firmware Cp1e-n20dt-a Cp1e-n20dt-a Firmware Cp1e-n20dt-d Cp1e-n20dt-d Firmware Cp1e-n20dt1-a Cp1e-n20dt1-a Firmware Cp1e-n20dt1-d Cp1e-n20dt1-d Firmware Cp1e-n30dr-a Cp1e-n30dr-a Firmware Cp1e-n30dr-d Cp1e-n30dr-d Firmware Cp1e-n30dt-a Cp1e-n30dt-a Firmware Cp1e-n30dt-d Cp1e-n30dt-d Firmware Cp1e-n30dt1-a Cp1e-n30dt1-a Firmware Cp1e-n30dt1-d Cp1e-n30dt1-d Firmware Cp1e-n30s1dr-a Cp1e-n30s1dr-a Firmware Cp1e-n30s1dt-d Cp1e-n30s1dt-d Firmware Cp1e-n30s1dt1-d Cp1e-n30s1dt1-d Firmware Cp1e-n30sdr-a Cp1e-n30sdr-a Firmware Cp1e-n30sdt-d Cp1e-n30sdt-d Firmware Cp1e-n30sdt1-d Cp1e-n30sdt1-d Firmware Cp1e-n40dr-a Cp1e-n40dr-a Firmware Cp1e-n40dr-d Cp1e-n40dr-d Firmware Cp1e-n40dt-a Cp1e-n40dt-a Firmware Cp1e-n40dt-d Cp1e-n40dt-d Firmware Cp1e-n40dt1-a Cp1e-n40dt1-a Firmware Cp1e-n40dt1-d Cp1e-n40dt1-d Firmware Cp1e-n40s1dr-a Cp1e-n40s1dr-a Firmware Cp1e-n40s1dt-d Cp1e-n40s1dt-d Firmware Cp1e-n40s1dt1-d Cp1e-n40s1dt1-d Firmware Cp1e-n40sdr-a Cp1e-n40sdr-a Firmware Cp1e-n40sdt-d Cp1e-n40sdt-d Firmware Cp1e-n40sdt1-d Cp1e-n40sdt1-d Firmware Cp1e-n60dr-a Cp1e-n60dr-a Firmware Cp1e-n60dr-d Cp1e-n60dr-d Firmware Cp1e-n60dt-a Cp1e-n60dt-a Firmware Cp1e-n60dt-d Cp1e-n60dt-d Firmware Cp1e-n60dt1-a Cp1e-n60dt1-a Firmware Cp1e-n60dt1-d Cp1e-n60dt1-d Firmware Cp1e-n60s1dr-a Cp1e-n60s1dr-a Firmware Cp1e-n60s1dt-d Cp1e-n60s1dt-d Firmware Cp1e-n60s1dt1-d Cp1e-n60s1dt1-d Firmware Cp1e-n60sdr-a Cp1e-n60sdr-a Firmware Cp1e-n60sdt-d Cp1e-n60sdt-d Firmware Cp1e-n60sdt1-d Cp1e-n60sdt1-d Firmware Cp1e-na20dr-a Cp1e-na20dr-a Firmware Cp1e-na20dt-d Cp1e-na20dt-d Firmware Cp1e-na20dt1-d Cp1e-na20dt1-d Firmware Cp1h-x40dr-a Cp1h-x40dr-a Firmware Cp1h-x40dt-d Cp1h-x40dt-d Firmware Cp1h-x40dt1-d Cp1h-x40dt1-d Firmware Cp1h-xa40dr-a Cp1h-xa40dr-a Firmware Cp1h-xa40dt-d Cp1h-xa40dt-d Firmware Cp1h-xa40dt1-d Cp1h-xa40dt1-d Firmware Cp1h-y20dt-d Cp1h-y20dt-d Firmware Cp1l-el20dr-d Cp1l-el20dr-d Firmware Cp1l-el20dt-d Cp1l-el20dt-d Firmware Cp1l-el20dt1-d Cp1l-el20dt1-d Firmware Cp1l-em30dr-d Cp1l-em30dr-d Firmware Cp1l-em30dt-d Cp1l-em30dt-d Firmware Cp1l-em30dt1-d Cp1l-em30dt1-d Firmware Cp1l-em40dr-d Cp1l-em40dr-d Firmware Cp1l-em40dt-d Cp1l-em40dt-d Firmware Cp1l-em40dt1-d Cp1l-em40dt1-d Firmware Cp1l-l10dr-a Cp1l-l10dr-a Firmware Cp1l-l10dr-d Cp1l-l10dr-d Firmware Cp1l-l10dt-a Cp1l-l10dt-a Firmware Cp1l-l10dt-d Cp1l-l10dt-d Firmware Cp1l-l10dt1-d Cp1l-l10dt1-d Firmware Cp1l-l14dr-a Cp1l-l14dr-a Firmware Cp1l-l14dr-d Cp1l-l14dr-d Firmware Cp1l-l14dt-a Cp1l-l14dt-a Firmware Cp1l-l14dt-d Cp1l-l14dt-d Firmware Cp1l-l14dt1-d Cp1l-l14dt1-d Firmware Cp1l-l20dr-a Cp1l-l20dr-a Firmware Cp1l-l20dr-d Cp1l-l20dr-d Firmware Cp1l-l20dt-a Cp1l-l20dt-a Firmware Cp1l-l20dt-d Cp1l-l20dt-d Firmware Cp1l-l20dt1-d Cp1l-l20dt1-d Firmware Cp1l-m30dr-a Cp1l-m30dr-a Firmware Cp1l-m30dr-d Cp1l-m30dr-d Firmware Cp1l-m30dt-a Cp1l-m30dt-a Firmware Cp1l-m30dt-d Cp1l-m30dt-d Firmware Cp1l-m30dt1-d Cp1l-m30dt1-d Firmware Cp1l-m40dr-a Cp1l-m40dr-a Firmware Cp1l-m40dr-d Cp1l-m40dr-d Firmware Cp1l-m40dt-a Cp1l-m40dt-a Firmware Cp1l-m40dt-d Cp1l-m40dt-d Firmware Cp1l-m40dt1-d Cp1l-m40dt1-d Firmware Cp1l-m60dr-a Cp1l-m60dr-a Firmware Cp1l-m60dr-d Cp1l-m60dr-d Firmware Cp1l-m60dt-a Cp1l-m60dt-a Firmware Cp1l-m60dt-d Cp1l-m60dt-d Firmware Cp1l-m60dt1-d Cp1l-m60dt1-d Firmware Cp1w-16er Cp1w-16er Firmware Cp1w-16et Cp1w-16et1 Cp1w-16et1 Firmware Cp1w-16et Firmware Cp1w-20edr1 Cp1w-20edr1 Firmware Cp1w-20edt Cp1w-20edt1 Cp1w-20edt1 Firmware Cp1w-20edt Firmware Cp1w-32er Cp1w-32er Firmware Cp1w-32et Cp1w-32et1 Cp1w-32et1 Firmware Cp1w-32et Firmware Cp1w-40edr Cp1w-40edr Firmware Cp1w-40edt Cp1w-40edt1 Cp1w-40edt1 Firmware Cp1w-40edt Firmware Cp1w-8ed Cp1w-8ed Firmware Cp1w-8er Cp1w-8er Firmware Cp1w-8et Cp1w-8et1 Cp1w-8et1 Firmware Cp1w-8et Firmware Cp1w-ad041 Cp1w-ad041 Firmware Cp1w-ad042 Cp1w-ad042 Firmware Cp1w-adb21 Cp1w-adb21 Firmware Cp1w-cif01 Cp1w-cif01 Firmware Cp1w-cif11 Cp1w-cif11 Firmware Cp1w-cif12-v1 Cp1w-cif12-v1 Firmware Cp1w-cif41 Cp1w-cif41 Firmware Cp1w-cn811 Cp1w-cn811 Firmware Cp1w-da021 Cp1w-da021 Firmware Cp1w-da041 Cp1w-da041 Firmware Cp1w-da042 Cp1w-da042 Firmware Cp1w-dab21v Cp1w-dab21v Firmware Cp1w-dam01 Cp1w-dam01 Firmware Cp1w-ext01 Cp1w-ext01 Firmware Cp1w-mab221 Cp1w-mab221 Firmware Cp1w-mad11 Cp1w-mad11 Firmware Cp1w-mad42 Cp1w-mad42 Firmware Cp1w-mad44 Cp1w-mad44 Firmware Cp1w-me05m Cp1w-me05m Firmware Cp1w-srt21 Cp1w-srt21 Firmware Cp1w-ts001 Cp1w-ts001 Firmware Cp1w-ts002 Cp1w-ts002 Firmware Cp1w-ts003 Cp1w-ts003 Firmware Cp1w-ts004 Cp1w-ts004 Firmware Cp1w-ts101 Cp1w-ts101 Firmware Cp1w-ts102 Cp1w-ts102 Firmware Cp2e-e14dr-a Cp2e-e14dr-a Firmware Cp2e-e20dr-a Cp2e-e20dr-a Firmware Cp2e-e30dr-a Cp2e-e30dr-a Firmware Cp2e-e40dr-a Cp2e-e40dr-a Firmware Cp2e-e60dr-a Cp2e-e60dr-a Firmware Cp2e-n14dr-a Cp2e-n14dr-a Firmware Cp2e-n14dr-d Cp2e-n14dr-d Firmware Cp2e-n14dt-a Cp2e-n14dt-a Firmware Cp2e-n14dt-d Cp2e-n14dt-d Firmware Cp2e-n14dt1-d Cp2e-n14dt1-d Firmware Cp2e-n20dr-a Cp2e-n20dr-a Firmware Cp2e-n20dr-d Cp2e-n20dr-d Firmware Cp2e-n20dt-a Cp2e-n20dt-a Firmware Cp2e-n20dt-d Cp2e-n20dt-d Firmware Cp2e-n20dt1-d Cp2e-n20dt1-d Firmware Cp2e-n30dr-a Cp2e-n30dr-a Firmware Cp2e-n30dr-d Cp2e-n30dr-d Firmware Cp2e-n30dt-a Cp2e-n30dt-a Firmware Cp2e-n30dt-d Cp2e-n30dt-d Firmware Cp2e-n30dt1-d Cp2e-n30dt1-d Firmware Cp2e-n40dr-a Cp2e-n40dr-a Firmware Cp2e-n40dr-d Cp2e-n40dr-d Firmware Cp2e-n40dt-a Cp2e-n40dt-a Firmware Cp2e-n40dt-d Cp2e-n40dt-d Firmware Cp2e-n40dt1-d Cp2e-n40dt1-d Firmware Cp2e-n60dr-a Cp2e-n60dr-a Firmware Cp2e-n60dr-d Cp2e-n60dr-d Firmware Cp2e-n60dt-a Cp2e-n60dt-a Firmware Cp2e-n60dt-d Cp2e-n60dt-d Firmware Cp2e-n60dt1-d Cp2e-n60dt1-d Firmware Cp2e-s30dr-a Cp2e-s30dr-a Firmware Cp2e-s30dt-d Cp2e-s30dt-d Firmware Cp2e-s30dt1-d Cp2e-s30dt1-d Firmware Cp2e-s40dr-a Cp2e-s40dr-a Firmware Cp2e-s40dt-d Cp2e-s40dt-d Firmware Cp2e-s40dt1-d Cp2e-s40dt1-d Firmware Cp2e-s60dr-a Cp2e-s60dr-a Firmware Cp2e-s60dt-d Cp2e-s60dt-d Firmware Cp2e-s60dt1-d Cp2e-s60dt1-d Firmware Cp2w-cifd1 Cp2w-cifd1 Firmware Cp2w-cifd2 Cp2w-cifd2 Firmware Cp2w-cifd3 Cp2w-cifd3 Firmware Cs1w-clk Cs1w-clk Firmware Cs1w-drm21-v1 Cs1w-drm21-v1 Firmware Cs1w-eip21 Cs1w-eip21 Firmware Cs1w-etn21 Cs1w-etn21 Firmware Cs1w-fln22 Cs1w-fln22 Firmware Cs1w-nc271 Cs1w-nc271 Firmware Cs1w-nc471 Cs1w-nc471 Firmware Cs1w-ncf71 Cs1w-ncf71 Firmware Cs1w-spu01-v2 Cs1w-spu01-v2 Firmware Cs1w-spu02-v2 Cs1w-spu02-v2 Firmware Nj-pa3001 Nj-pa3001 Firmware Nj-pd3001 Nj-pd3001 Firmware Nj101-1000 Nj101-1000 Firmware Nj101-1020 Nj101-1020 Firmware Nj101-9000 Nj101-9000 Firmware Nj101-9020 Nj101-9020 Firmware Nj301-1100 Nj301-1100 Firmware Nj301-1200 Nj301-1200 Firmware Nj501-1300 Nj501-1300 Firmware Nj501-1320 Nj501-1320 Firmware Nj501-1340 Nj501-1340 Firmware Nj501-1400 Nj501-1400 Firmware Nj501-1420 Nj501-1420 Firmware Nj501-1500 Nj501-1500 Firmware Nj501-1520 Nj501-1520 Firmware Nj501-4300 Nj501-4300 Firmware Nj501-4310 Nj501-4310 Firmware Nj501-4320 Nj501-4320 Firmware Nj501-4400 Nj501-4400 Firmware Nj501-4500 Nj501-4500 Firmware Nj501-5300 Nj501-5300 Firmware Nj501-r300 Nj501-r300 Firmware Nj501-r320 Nj501-r320 Firmware Nj501-r400 Nj501-r400 Firmware Nj501-r420 Nj501-r420 Firmware Nj501-r500 Nj501-r500 Firmware Nj501-r520 Nj501-r520 Firmware Nx102-1000 Nx102-1000 Firmware Nx102-1020 Nx102-1020 Firmware Nx102-1100 Nx102-1100 Firmware Nx102-1120 Nx102-1120 Firmware Nx102-1200 Nx102-1200 Firmware Nx102-1220 Nx102-1220 Firmware Nx102-9000 Nx102-9000 Firmware Nx102-9020 Nx102-9020 Firmware Nx1p2-1040dt Nx1p2-1040dt1 Nx1p2-1040dt1 Firmware Nx1p2-1040dt Firmware Nx1p2-1140dt Nx1p2-1140dt1 Nx1p2-1140dt1 Firmware Nx1p2-1140dt Firmware Nx1p2-9024dt Nx1p2-9024dt1 Nx1p2-9024dt1 Firmware Nx1p2-9024dt Firmware Nx701-1620 Nx701-1620 Firmware Nx701-1720 Nx701-1720 Firmware
cve-icon MITRE

Status: PUBLISHED

Assigner: jpcert

Published:

Updated: 2024-12-24T16:45:20.428Z

Reserved: 2023-03-15T00:00:00.000Z

Link: CVE-2023-27396

cve-icon Vulnrichment

Updated: 2024-08-02T12:09:43.381Z

cve-icon NVD

Status : Modified

Published: 2023-06-19T05:15:09.187

Modified: 2024-12-24T17:15:06.360

Link: CVE-2023-27396

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.

Weaknesses