CVE-2024-12083 is a path traversal vulnerability (CWE-22) identified in OMRON Corporation's Machine Automation Controller NJ-series, specifically affecting versions NJ101-[][][][] Ver.1.64.05 and lower. Path traversal vulnerabilities occur when an application improperly restricts user-supplied input to file paths, allowing attackers to access files and directories outside the intended restricted directory. In this case, the vulnerability allows an attacker with certain privileges to perform unauthorized access and remotely execute unauthorized code on the affected controllers. The CVSS 3.1 base score is 6.6 (medium severity), with the vector indicating network attack vector (AV:N), high attack complexity (AC:H), requiring privileges (PR:H), no user interaction (UI:N), unchanged scope (S:U), and high impact on confidentiality, integrity, and availability (C:H/I:H/A:H). This suggests that exploitation requires an attacker to have some level of authorized access or credentials but can be performed remotely without user interaction. The vulnerability could enable attackers to traverse directories beyond intended boundaries, potentially reading sensitive configuration files, injecting malicious code, or disrupting controller operations. These controllers are critical components in industrial automation environments, controlling machinery and processes, so exploitation could lead to operational disruptions or safety hazards. No known exploits are currently reported in the wild, and no patches have been linked yet, indicating that mitigation may require vendor updates or configuration changes once available.

For European organizations utilizing OMRON NJ-series Machine Automation Controllers, this vulnerability poses a significant risk to industrial control systems (ICS) and operational technology (OT) environments. Unauthorized access and remote code execution could lead to manipulation or disruption of automated manufacturing processes, causing production downtime, financial losses, and potential safety incidents. Confidentiality breaches could expose sensitive operational data or intellectual property. Integrity compromises could result in altered control commands, leading to defective products or unsafe conditions. Availability impacts could halt critical industrial operations. Given the reliance on automation in sectors such as automotive manufacturing, pharmaceuticals, and energy production across Europe, exploitation could have cascading effects on supply chains and critical infrastructure. The requirement for attacker privileges somewhat limits the attack surface but insider threats or compromised credentials could enable exploitation. The lack of known exploits suggests a window for proactive mitigation before widespread attacks occur.

European organizations should immediately inventory their use of OMRON NJ-series controllers and identify affected versions (Ver.1.64.05 and lower). Until patches are released, implement strict network segmentation to isolate these controllers from general IT networks and limit access to trusted personnel only. Enforce strong authentication and credential management policies to reduce the risk of privilege escalation or credential compromise. Monitor network traffic and controller logs for unusual access patterns or attempts to access unauthorized directories. Employ application-layer firewalls or intrusion detection systems tailored for ICS environments to detect and block suspicious path traversal attempts. Engage with OMRON for timely updates and apply patches as soon as they become available. Additionally, conduct security awareness training for staff managing these controllers to recognize and report potential security incidents. Consider deploying compensating controls such as read-only file system permissions where feasible to limit unauthorized code execution.