CVE-2026-31622

In the Linux kernel, the following vulnerability has been resolved: NFC: digital: Bounds check NFC-A cascade depth in SDD response handler The NFC-A anti-collision cascade in digitalinrecvsddres appends 3 or 4 bytes to target-nfcid1 on each round, but the number of cascade rounds is controlled...

CVE-2026-31622 NFC: digital: Bounds check NFC-A cascade depth in SDD response handler

In the Linux kernel, the following vulnerability has been resolved: NFC: digital: Bounds check NFC-A cascade depth in SDD response handler The NFC-A anti-collision cascade in digitalinrecvsddres appends 3 or 4 bytes to target-nfcid1 on each round, but the number of cascade rounds is controlled...

PT-2026-34974

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the NFC-A anti-collision cascade within the digital in recv sdd res function. The process appends 3 or 4 bytes to target-nfcid1 during each round, but the number of roun...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987248)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987248 advisory. In the Linux kernel, the following vulnerability has been resolved: NFC: digital: fix possible memory leak in digitalinsendsddreq 'skb' is allocated in...

EUVD-2025-6435

Malicious code in bioql PyPI...

EUVD-2022-34762

Malicious code in bioql PyPI...

CVE-2023-27385

Heap-based buffer overflow vulnerability exists in CX-Drive All models all versions. By having a user open a specially crafted SDD file, arbitrary code may be executed and/or information may be disclosed...

CVE-2025-27593

The product can be used to distribute malicious code using SDD Device Drivers due to missing download verification checks, leading to code execution on target systems...

CVE-2025-27593

The product can be used to distribute malicious code using SDD Device Drivers due to missing download verification checks, leading to code execution on target systems...

CVE-2025-27593

CVE-2025-27593 affects SICK DL100-2xxxxxxx sensors. The issue arises from missing download verification checks in SICK’s distribution flow (SDD Device Drivers), which could allow a malicious payload to be delivered and execute code on target systems. The NVD entry assigns a CVSS 3.1 base score of...

CVE-2024-10025

A vulnerability in the .sdd file allows an attacker to read default passwords stored in plain text within the code. By exploiting these plaintext credentials, an attacker can log into affected SICK products as an “Authorized Client” if the customer has not changed the default password...

CVE-2024-10025

The CVE describes a vulnerability in the .sdd files of SICK CLV6xx, Lector6xx and RFx6xx products where an attacker can read default passwords stored in plaintext in the code. Exploitation enables logging in as an “Authorized Client” if the customer did not change the default password, potentiall...

CVE-2024-10025 Vulnerability in SICK CLV6xx, SICK Lector6xx and SICK RFx6xx

A vulnerability in the .sdd file allows an attacker to read default passwords stored in plain text within the code. By exploiting these plaintext credentials, an attacker can log into affected SICK products as an “Authorized Client” if the customer has not changed the default password...

CVE-2023-27385

Heap-based buffer overflow vulnerability exists in CX-Drive All models all versions. By having a user open a specially crafted SDD file, arbitrary code may be executed and/or information may be disclosed...

CVE-2023-27385

Heap-based buffer overflow vulnerability exists in CX-Drive All models all versions. By having a user open a specially crafted SDD file, arbitrary code may be executed and/or information may be disclosed...

Heap overflow

Heap-based buffer overflow vulnerability exists in CX-Drive All models all versions. By having a user open a specially crafted SDD file, arbitrary code may be executed and/or information may be disclosed...

Heap-based buffer overflow vulnerability in OMRON CX-Drive

Overview CX-Drive provided by OMRON Corporation contains a heap-based buffer overflow vulnerability CWE-122, CVE-2023-27385. Michael Heinzl reported this vulnerability to JPCERT/CC. JPCERT/CC coordinated with the developer. Impact By having a user open a specially crafted SDD file, arbitrary code...

Omron CX-Drive 缓冲区错误漏洞

Omron CX-Drive is a CX drive software for inverters and servos from Omron Japan. A buffer error vulnerability exists in Omron CX-Drive version V3.01 and earlier. An attacker could exploit this vulnerability to execute arbitrary code or disclose information by allowing the victim to open a special...

sdd-gmbh.de Cross Site Scripting vulnerability OBB-3268472

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

CVE-2022-2504

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in SDD Computer Software SDD-Baro allows SQL Injection. This issue affects SDD-Baro: before 2.8.432...