Unity Linux 20.1050e Security Update: kernel (UTSA-2026-021577)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-021577 advisory. In the Linux kernel, the following vulnerability has been resolved: net: can: j1939: enhanced error handling for tightly received RTS messages in xtprxrtssessionnew...

CVE-2026-33952

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, an unvalidated authlength field read from the network triggers a WINPRASSERT failure in rtsreadauthverifiernochecks, causing any FreeRDP client connecting through a malicious RDP Gateway to crash with SIGABR...

CVE-2026-22997

In the Linux kernel, the following vulnerability has been resolved: net: can: j1939: j1939xtprxrtssessionactive: deactivate session upon receiving the second rts Since j1939sessiondeactivateactivatenext in j1939tprxtimer is called only when the timer is enabled, we need to call...

CVE-2026-22997 net: can: j1939: j1939_xtp_rx_rts_session_active(): deactivate session upon receiving the second rts

In the Linux kernel, the following vulnerability has been resolved: net: can: j1939: j1939xtprxrtssessionactive: deactivate session upon receiving the second rts Since j1939sessiondeactivateactivatenext in j1939tprxtimer is called only when the timer is enabled, we need to call...

Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2023-52887)

net: can: j1939: vulnerability related to error handling for closely received RTS messages in xtprxrtssessionnew, which is addressed by replacing less informative backtraces with a new method that provides clearer error messages and allows for early termination of problematic sessions. This plugi...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-988966)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-988966 advisory. In the Linux kernel, the following vulnerability has been resolved: net: can: j1939: enhanced error handling for tightly received RTS messages in xtprxrtssessionnew...

Malicious Package

Overview redux-toolkit-rts is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

EUVD-2003-1380

Malware in sbrugna...

EUVD-2008-4529

Malware in sbrugna...

EUVD-2004-1516

Malware in sbrugna...

EUVD-2023-39037

Malicious code in bioql PyPI...

Malicious code in redux-toolkit-rts (npm)

The package redux-toolkit-rts was found to contain malicious code...

MAL-2025-42069 Malicious code in redux-toolkit-rts (npm)

The package redux-toolkit-rts was found to contain malicious code...

Malicious code in rts-sdk-api-nodejs (npm)

The package rts-sdk-api-nodejs was found to contain malicious code...

MAL-2025-32521 Malicious code in rts-sdk-api-nodejs (npm)

The package rts-sdk-api-nodejs was found to contain malicious code...

PT-2025-25233 · Bosch · Bosch Rts Vlink Virtual Matrix +1

Name of the Vulnerable Software and Affected Versions: Apache HTTP Server affected versions not specified Bosch Telex RDC Server affected versions not specified Bosch RTS VLink affected versions not specified Description: The issue allows unauthorized users to execute arbitrary code on the server...

CVE-2023-34999

A command injection vulnerability exists in RTS VLink Virtual Matrix Software Versions v5 5.7.6 and v6 6.5.0 that allows an attacker to perform arbitrary code execution via the admin web interface...

CISA Releases Five Industrial Control Systems Advisories

CISA released five Industrial Control Systems ICS advisories on April 3, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-093-01 Hitachi Energy RTU500 Series ICSA-25-093-02 Hitachi Energy TRMTracker...

AZL-51101 CVE-2024-50058 affecting package kernel for versions less than 5.15.176.3-1

In the Linux kernel, the following vulnerability has been resolved: serial: protect uartportdtrrts in uartshutdown too Commit af224ca2df29 serial: core: Prevent unsafe uart port access, part 3 added few uport == NULL checks. It added one to uartshutdown, so the commit assumes, uport can be NULL i...

CVE-2023-52887

In the Linux kernel, the following vulnerability has been resolved: net: can: j1939: enhanced error handling for tightly received RTS messages in xtprxrtssessionnew This patch enhances error handling in scenarios with RTS Request to Send messages arriving closely. It replaces the less informative...