Least Privilege Violation in NJ/NX-series Machine Automation Controllers by Omron
CVE-2025-1384

Currently unrated

Key Information:

Vendor

Omron

Status
NJ/NX-series Machine Automation Controllers
Vendor
CVE Published:
14 July 2025

What is CVE-2025-1384?

A vulnerability exists in the communication function between the NJ/NX-series Machine Automation Controllers and Sysmac Studio Software. This flaw allows attackers to exploit least privilege violations, potentially gaining unauthorized access to the controller and executing remote code. It is crucial for users of these products to address this vulnerability to ensure the security of their operations and prevent unauthorized manipulation.

References

https://www.fa.omron.co.jp/product/security/assets/pdf/en...
https://www.fa.omron.co.jp/product/security/assets/pdf/ja...

Timeline

  • Vulnerability published

.
CVE-2025-1384 : Least Privilege Violation in NJ/NX-series Machine Automation Controllers by Omron