CVE-2019-18269 – Omron CS and CJ series PLCs have an unrestricte... (How to Fix)

Q: What is the severity of CVE-2019-18269?

CVE-2019-18269 has a CVSS score of 9.8 (CRITICAL). Omron CS and CJ series PLCs have an unrestricted externally accessible lock vulnerability that allows attackers to bypass authentication and gain unauthorized access to the PLC programming environment. This affects industrial control systems using these specific PLC models, potentially compromising critical infrastructure operations.

📋 TL;DR

Omron CS and CJ series PLCs have an unrestricted externally accessible lock vulnerability that allows attackers to bypass authentication and gain unauthorized access to the PLC programming environment. This affects industrial control systems using these specific PLC models, potentially compromising critical infrastructure operations.

💻 Affected Systems

Products:

Omron CS series PLCs
Omron CJ series PLCs

Versions: All versions prior to firmware updates addressing CVE-2019-18269

Operating Systems: PLC firmware

Default Config Vulnerable: ⚠️ Yes

Notes: Affects PLCs with programming port accessible via network connections. Physical access to programming port also vulnerable.

📦 What is this software?

Plc Cj Firmware by Omron

View all CVEs affecting Plc Cj Firmware →

Plc Cs Firmware by Omron

View all CVEs affecting Plc Cs Firmware →

⚠️ Manual Verification Required

This CVE does not have specific version information in our database, so automatic vulnerability detection cannot determine if your system is affected.

Why? The CVE database entry doesn't specify which versions are vulnerable (no version ranges provided by the vendor/NVD).

🔒 Custom verification scripts are available for registered users. Sign up free to download automated test scripts.

Recommended Actions:

Review the CVE details at NVD
Check vendor security advisories for your specific version
Test if the vulnerability is exploitable in your environment
Consider updating to the latest version as a precaution

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete takeover of industrial control systems, allowing attackers to modify PLC logic, disrupt physical processes, cause equipment damage, or create safety hazards in critical infrastructure.

🟠

Likely Case

Unauthorized access to PLC programming environment leading to operational disruption, data theft, or manipulation of industrial processes.

🟢

If Mitigated

Limited impact if PLCs are isolated in air-gapped networks with proper access controls and monitoring in place.

🌐 Internet-Facing: HIGH - Directly exposed PLCs can be exploited remotely without authentication.

🏢 Internal Only: MEDIUM - Internal network access still presents risk if proper segmentation is not implemented.

🎯 Exploit Status

Public PoC: ⚠️ Yes

Weaponized: LIKELY

Unauthenticated Exploit: ⚠️ Yes

Complexity: LOW

Vulnerability allows bypass of authentication mechanism without requiring credentials or special tools.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Firmware updates provided by Omron (specific version varies by model)

Vendor Advisory: https://www.omron-cxone.com/security/2019-12-06_PLC_EN.pdf

Restart Required: Yes

Instructions:

1. Contact Omron support for firmware updates specific to your PLC model. 2. Backup PLC program. 3. Apply firmware update following Omron's instructions. 4. Restart PLC. 5. Verify program functionality.

🔧 Temporary Workarounds

Network Isolation

all

Isolate PLCs from untrusted networks and implement strict firewall rules

Physical Security

all

Restrict physical access to PLC programming ports and network connections

🧯 If You Can't Patch

Implement strict network segmentation and firewall rules to isolate PLCs from untrusted networks
Enable logging and monitoring for unauthorized access attempts to PLC programming interfaces

🔍 How to Verify

Check if Vulnerable:

Check if PLC programming port is accessible without authentication via network connection tools

Check Version:

Use Omron CX-Programmer or similar software to read PLC firmware version

Verify Fix Applied:

Verify firmware version matches patched version from Omron advisory and test authentication requirements

📡 Detection & Monitoring

Log Indicators:

Unauthorized connection attempts to PLC programming ports
Multiple failed authentication attempts followed by successful access

Network Indicators:

Unexpected traffic to PLC programming ports (typically TCP 9600)
Connection attempts from unauthorized IP addresses

SIEM Query:

source_ip NOT IN (authorized_plc_ips) AND dest_port=9600 AND protocol=TCP

📊 Metadata

CVE ID: CVE-2019-18269

CVSS v3 Score: 9.8 (CRITICAL)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE: CWE-412

Published: December 16, 2019

Last Updated: February 20, 2026

🔗 References

https://www.omron-cxone.com/security/2019-12-06_PLC_EN.pdf
https://www.us-cert.gov/ics/advisories/icsa-19-346-02 Third Party Advisory,US Government Resource
https://www.omron-cxone.com/security/2019-12-06_PLC_EN.pdf
https://www.us-cert.gov/ics/advisories/icsa-19-346-02 Third Party Advisory,US Government Resource

📤 Share & Export

📄 Export Markdown 📋 Export JSON