71 matches found
Astra Linux – Vulnerability in Linux, Linux 5.10
In the Linux kernel, the following vulnerabilities have been resolved: isdn: mISDN: netjet: Fixed a crash in njprobe: The ‘njsetup’ function in netjet.c might fail with -EIO. In this case, ‘card-irq’ is initialized and is greater than zero. A subsequent call to ‘njrelease’ will release the irq th...
Malicious code in nj-logger (npm)
nj-logger is a malicious npm package that when imported in file dist/logger/telemetry.js downloads a trojan for Windows only, W64.AIDetectMalware / Trojan.Malware.300983.susgen from http://178.128.88.40:8080/download/svc to path nodemodules/.cache/nj-logger/nj-transport-win32-x64.node and execute...
MAL-2026-2907 Malicious code in nj-logger (npm)
nj-logger is a malicious npm package that when imported in file dist/logger/telemetry.js downloads a trojan for Windows only, W64.AIDetectMalware / Trojan.Malware.300983.susgen from http://178.128.88.40:8080/download/svc to path nodemodules/.cache/nj-logger/nj-transport-win32-x64.node and execute...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-986496)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986496 advisory. In the Linux kernel, the following vulnerability has been resolved: isdn: mISDN: netjet: Fix crash in njprobe: 'njsetup' in netjet.c might fail with -EIO and in this...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987324)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987324 advisory. In the Linux kernel, the following vulnerability has been resolved: isdn: mISDN: netjet: Fix crash in njprobe: 'njsetup' in netjet.c might fail with -EIO and in this...
EUVD-2024-50579
Malicious code in bioql PyPI...
EUVD-2025-21287
Malicious code in bioql PyPI...
Fake Minecraft Installer Spreads NjRat Spyware to Steal Data
Fake Minecraft clone Eaglercraft 1.12 Offline spreads NjRat spyware stealing passwords, spying via webcam and microphone, warns Point…...
Least Privilege Violation Vulnerability in the communications functions of NJ/NX series Machine Automation Controllers
Overview Least privilege violation vulnerability CWE-272 exists in the communication function between the NJ/NX-series Machine Automation Controllers and the Sysmac Studio Software provided by OMRON Corporation. - CVE-2025-1384 OMRON Corporation reported this vulnerability to JPCERT/CC to notify...
CVE-2025-1384 Least Privilege Violation Vulnerability in the communications functions of NJ/NX-series Machine Automation Controllers
Least Privilege Violation CWE-272 Vulnerability exists in the communication function between the NJ/NX-series Machine Automation Controllers and the Sysmac Studio Software. An attacker may use this vulnerability to perform unauthorized access and to execute unauthorized code remotely to the...
CVE-2025-1384 Least Privilege Violation Vulnerability in the communications functions of NJ/NX-series Machine Automation Controllers
Least Privilege Violation CWE-272 Vulnerability exists in the communication function between the NJ/NX-series Machine Automation Controllers and the Sysmac Studio Software. An attacker may use this vulnerability to perform unauthorized access and to execute unauthorized code remotely to the...
CVE-2025-1384
CVE-2025-1384 affects Omron NJ/NX-series Machine Automation Controllers and Sysmac Studio Software. The issue is a Least Privilege Violation (CWE-272) in the communications function between these products, allowing a remote attacker to gain unauthorized access and potentially execute arbitrary co...
PT-2025-29396 · Omron · Machine Automation Controller Nj Series +1
Name of the Vulnerable Software and Affected Versions: NJ/NX-series Machine Automation Controllers affected versions not specified Sysmac Studio Software affected versions not specified Description: A least privilege violation exists in the communication function between the NJ/NX-series Machine...
Omron Sysmac Studio和Omron NJ/NX-series Machine Automation Controllers 安全漏洞
Omron Sysmac Studio and Omron NJ/NX-series Machine Automation Controllers are both products of Omron Japan.Omron Sysmac Studio is a unique environment that integrates logic, motion and drives, robotics, safety, visualization, sensing and information technology into one project. , sensing, and...
Vulnerability of the nj_probe() function in the drivers/isdn/hardware/mISDN/netjet.c module – This driver is part of the mISDN device support in the Linux operating system. It allows a hacker to cause a service failure.
Vulnerability of the njprobe function in the drivers/isdn/hardware/mISDN/netjet.c module – The Linux kernel’s mISDN device driver has a vulnerability that leads to uncontrolled resource consumption. Exploiting this vulnerability could allow an attacker to cause service failures...
CVE-2024-33687
Insufficient verification of data authenticity issue exists in NJ Series CPU Unit all versions and NX Series CPU Unit all versions. If a user program in the affected product is altered, the product may not be able to detect the alteration...
CVE-2024-12083
Path Traversal Vulnerabilities CWE-22 exist in NJ/NX-series Machine Automation Controllers. An attacker may use these vulnerabilities to perform unauthorized access and to execute unauthorized code remotely to the controller products...
OMRON NJ/NX series vulnerable to path traversal
Overview Machine Automation Controller NJ/NX series provided by OMRON Corporation contain a path traversal vulnerability CWE-22, CVE-2024-12083. OMRON Corporation reported this vulnerability to JPCERT/CC to notify users of its solution through JVN. Impact An arbitrary file in the affected product...
CVE-2024-12083 Path Traversal Vulnerabilities in NJ/NX-series Machine Automation Controllers
Path Traversal Vulnerabilities CWE-22 exist in NJ/NX-series Machine Automation Controllers. An attacker may use these vulnerabilities to perform unauthorized access and to execute unauthorized code remotely to the controller products...
CVE-2024-12083
The CVE-2024-12083 issue affects Omron NJ/NX-series Machine Automation Controllers. A path traversal vulnerability (CWE-22) exists in the NJ/NX product line, allowing a remote attacker (with administrative privileges) to access arbitrary files and potentially execute arbitrary code on the control...