ГлавнаяУязвимости → CVE-2025-1384
7высокая

CVE-2025-1384

Описание

Least Privilege Violation (CWE-272) Vulnerability exists in the communication function between the NJ/NX-series Machine Automation Controllers and the Sysmac Studio Software. An attacker may use this vulnerability to perform unauthorized access and to execute unauthorized code remotely to the controller products.

CVSS
Балл7 — высокая
ВекторCVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H
Источники
https://www.fa.omron.co.jp/product/security/assets/pdf/en/OMSR-2025-004_en.pdfhttps://www.fa.omron.co.jp/product/security/assets/pdf/ja/OMSR-2025-004_ja.pdf