Unrated severityNVD Advisory· Published Jul 24, 2014· Updated Jun 17, 2026
CVE-2014-2370
CVE-2014-2370
Description
Cross-site scripting (XSS) vulnerability in the web application on Omron NS5, NS8, NS10, NS12, and NS15 HMI terminals 8.1xx through 8.68x allows remote authenticated users to inject arbitrary web script or HTML via crafted data.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
13- cpe:2.3:h:omron:ns10_hmi_terminal:-:*:*:*:*:*:*:*
- cpe:2.3:h:omron:ns12_hmi_terminal:-:*:*:*:*:*:*:*
- cpe:2.3:h:omron:ns15_hmi_terminal:-:*:*:*:*:*:*:*
- cpe:2.3:h:omron:ns5_hmi_terminal:-:*:*:*:*:*:*:*
- cpe:2.3:h:omron:ns8_hmi_terminal:-:*:*:*:*:*:*:*
cpe:2.3:o:omron:ns_series_system_program_firmware:8.1:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:omron:ns_series_system_program_firmware:8.1:*:*:*:*:*:*:*
- cpe:2.3:o:omron:ns_series_system_program_firmware:8.68:*:*:*:*:*:*:*
- Range: 8.1xx - 8.68x
- Omron/NS10v5Range: 8.1xx
- Omron/NS12v5Range: 8.1xx
- Omron/NS15v5Range: 8.1xx
- Omron/NS5v5Range: 8.1xx
- Omron/NS8v5Range: 8.1xx
Patches
Vulnerability mechanics
References
4- ics-cert.us-cert.gov/advisories/ICSA-14-203-01nvdThird Party AdvisoryUS Government Resource
- www.securityfocus.com/bid/68836nvd
- automation.omron.com/en/us/products/nvd
- www.cisa.gov/news-events/ics-advisories/icsa-14-203-01nvd
News mentions
0No linked articles in our index yet.