CVE-2023-27396

Name: CVE-2023-27396
Creator: NVD / NIST
Published: 2023-06-19T05:15:09.187+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

CRITICALCVSS 9.8/10EPSS 1.39%

Last modified Jun 17, 2026

CVE-2023-27396 is a critical-severity vulnerability rated 9.8/10 on the CVSS scale. FINS (Factory Interface Network Service) is a message communication protocol, which is designed to be used in closed FA (Factory Automation) networks, and is used in FA networks composed of OMRON products. Multiple OMRON products that implement FINS protocol contain following security issues -- (1)Plaintext communication, and (2)No authentication required. EPSS estimates a 1.39% chance of exploitation in the next 30 days.

Description

FINS (Factory Interface Network Service) is a message communication protocol, which is designed to be used in closed FA (Factory Automation) networks, and is used in FA networks composed of OMRON products. Multiple OMRON products that implement FINS protocol contain following security issues -- (1)Plaintext communication, and (2)No authentication required. When FINS messages are intercepted, the contents may be retrieved. When arbitrary FINS messages are injected, any commands may be executed on, or the system information may be retrieved from, the affected device. Affected products and versions are as follows: SYSMAC CS-series CPU Units, all versions, SYSMAC CJ-series CPU Units, all versions, SYSMAC CP-series CPU Units, all versions, SYSMAC NJ-series CPU Units, all versions, SYSMAC NX1P-series CPU Units, all versions, SYSMAC NX102-series CPU Units, all versions, and SYSMAC NX7 Database Connection CPU Units (Ver.1.16 or later)

Metrics

CVSS 3.1

9.8/10

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS Probability

1.39%

68.7th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

Vendor	Product	Versions
Omron	Cs1w-Eip21 Firmware	All versions
Omron	Cs1w-Spu01-V2 Firmware	All versions
Omron	Cs1w-Spu02-V2 Firmware	All versions
Omron	Cs1w-Etn21 Firmware	All versions
Omron	Cs1w-Clk Firmware	All versions
Omron	Cs1w-Fln22 Firmware	All versions
Omron	Cs1w-Drm21-V1 Firmware	All versions
Omron	Cs1w-Nc271 Firmware	All versions
Omron	Cs1w-Nc471 Firmware	All versions
Omron	Cs1w-Ncf71 Firmware	All versions
Omron	Cj2m-Cpu35 Firmware	All versions
Omron	Cj2m-Cpu34 Firmware	All versions
Omron	Cj2m-Cpu33 Firmware	All versions
Omron	Cj2m-Cpu32 Firmware	All versions
Omron	Cj2m-Cpu31 Firmware	All versions
Omron	Cj2m-Cpu15 Firmware	All versions
Omron	Cj2m-Cpu14 Firmware	All versions
Omron	Cj2m-Cpu13 Firmware	All versions
Omron	Cj2m-Cpu12 Firmware	All versions
Omron	Cj2m-Cpu11 Firmware	All versions
Omron	Cp1w-Cif01 Firmware	All versions
Omron	Cp1w-Cif11 Firmware	All versions
Omron	Cp1w-Cif12-V1 Firmware	All versions
Omron	Cj2m-Md211 Firmware	All versions
Omron	Cj2m-Md212 Firmware	All versions
Omron	Cj2h-Cpu68-Eip Firmware	All versions
Omron	Cj2h-Cpu67-Eip Firmware	All versions
Omron	Cj2h-Cpu66-Eip Firmware	All versions
Omron	Cj2h-Cpu65-Eip Firmware	All versions
Omron	Cj2h-Cpu64-Eip Firmware	All versions
Omron	Cj2h-Cpu68 Firmware	All versions
Omron	Cj2h-Cpu67 Firmware	All versions
Omron	Cj2h-Cpu66 Firmware	All versions
Omron	Cj2h-Cpu65 Firmware	All versions
Omron	Cj2h-Cpu64 Firmware	All versions
Omron	Cp2e-N14dr-A Firmware	All versions
Omron	Cp2e-N14dt-A Firmware	All versions
Omron	Cp2e-N14dr-D Firmware	All versions
Omron	Cp2e-N14dt-D Firmware	All versions
Omron	Cp2e-N14dt1-D Firmware	All versions
Omron	Cp2e-N20dr-A Firmware	All versions
Omron	Cp2e-N20dt-A Firmware	All versions
Omron	Cp2e-N20dr-D Firmware	All versions
Omron	Cp2e-N20dt-D Firmware	All versions
Omron	Cp2e-N20dt1-D Firmware	All versions
Omron	Cp2e-N30dr-A Firmware	All versions
Omron	Cp2e-N30dt-A Firmware	All versions
Omron	Cp2e-N30dr-D Firmware	All versions
Omron	Cp2e-N30dt-D Firmware	All versions
Omron	Cp2e-N30dt1-D Firmware	All versions

Showing 50 of 271 affected configurations. See NVD for the full list.

References

https://jvn.jp/en/ta/JVNTA91513661/Third Party Advisory
https://jvn.jp/ta/JVNTA91513661/Third Party Advisory
https://www.cisa.gov/uscert/ics/advisories/icsa-22-179-02Not Applicable, Third Party Advisory, US Government Resource
https://www.fa.omron.co.jp/product/vulnerability/OMSR-2023-003_ja.pdfVendor Advisory
https://www.ia.omron.com/product/vulnerability/OMSR-2023-003_en.pdfVendor Advisory
https://www.us-cert.gov/ics/advisories/icsa-19-346-02Not Applicable, Third Party Advisory, US Government Resource
https://www.us-cert.gov/ics/advisories/icsa-20-063-03Not Applicable, Third Party Advisory, US Government Resource
https://jvn.jp/en/ta/JVNTA91513661/Third Party Advisory
https://jvn.jp/ta/JVNTA91513661/Third Party Advisory
https://www.cisa.gov/uscert/ics/advisories/icsa-22-179-02Not Applicable, Third Party Advisory, US Government Resource
https://www.fa.omron.co.jp/product/vulnerability/OMSR-2023-003_ja.pdfVendor Advisory
https://www.ia.omron.com/product/vulnerability/OMSR-2023-003_en.pdfVendor Advisory
https://www.us-cert.gov/ics/advisories/icsa-19-346-02Not Applicable, Third Party Advisory, US Government Resource
https://www.us-cert.gov/ics/advisories/icsa-20-063-03Not Applicable, Third Party Advisory, US Government Resource

Timeline

Published: Jun 19, 2023
Last Modified: Jun 17, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2023-27396?

How severe is CVE-2023-27396?

CVE-2023-27396 has a CVSS score of 9.8/10 (CRITICAL severity). The EPSS model estimates a 1.39% probability of exploitation in the next 30 days.

How do I fix CVE-2023-27396?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2023-27396?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST