CVE-2022-31205

In Omron CS series, CJ series, and CP series PLCs through 2022-05-18, the password for access to the Web UI is stored in memory area D1449...D1452 and can be read out using the Omron FINS protocol without any further authentication...

CVE-2019-18259

In Omron PLC CJ series, all versions and Omron PLC CS series, all versions, an attacker could spoof arbitrary messages or execute commands...

CVE-2025-23869

Cross-Site Request Forgery CSRF vulnerability in shibulijack CJ Custom Content cj-custom-content allows Stored XSS.This issue affects CJ Custom Content: from n/a through = 2.0...

Kimsuky Spreads DocSwap Android Malware via QR Phishing Posing as Delivery App

The North Korean threat actor known as Kimsuky has been linked to a new campaign that distributes a new variant of Android malware called DocSwap via QR codes hosted on phishing sites mimicking Seoul-based logistics firm CJ Logistics formerly CJ Korea Express. "The threat actor leveraged QR codes...

EUVD-2009-3491

Malware in sbrugna...

EUVD-2005-1509

Malware in sbrugna...

EUVD-2006-4784

Malware in sbrugna...

EUVD-2008-4224

Malware in sbrugna...

EUVD-2020-28126

Malware in sbrugna...

EUVD-2006-4439

Malware in sbrugna...

EUVD-2019-8061

Malware in sbrugna...

EUVD-2022-48650

Malicious code in bioql PyPI...

EUVD-2024-43293

Malicious code in bioql PyPI...

EUVD-2023-42519

Malicious code in bioql PyPI...

EUVD-2025-3490

Malicious code in bioql PyPI...

Malicious code in cj-tests-2fa (npm)

The package cj-tests-2fa was found to contain malicious code...

Malicious code in @zalastax/nolb-node-cj (npm)

The package @zalastax/nolb-node-cj was found to contain malicious code...

MAL-2025-12607 Malicious code in @zalastax/nolb-node-cj (npm)

The package @zalastax/nolb-node-cj was found to contain malicious code...

CVE-2023-38744

Denial-of-service DoS vulnerability due to improper validation of specified type of input issue exists in the built-in EtherNet/IP port of the CJ Series CJ2 CPU unit and the communication function of the CS/CJ Series EtherNet/IP unit. If an affected product receives a packet which is specially...

The vulnerability of the microprogramming software used in programmable logic controllers of the SYSMAC series, CS, CJ, and CP, allows attackers to circumvent existing security restrictions and gain unauthorized access to protected information.

The vulnerability of the microprogramming software used in SYSMAC programmable logic controllers of the CS, CJ, and CP series is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker to bypass existing security restrictions and gain unauthorized access t...