Opto 22 SoftPAC Project Version 9.6 and prior. SoftPAC’s firmware files’ signatures are not verified upon firmware update. This allows an attacker to replace legitimate firmware files with malicious files.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://www.us-cert.gov/ics/advisories/icsa-20-135-01 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: icscert
Published: 2020-05-14T20:30:55
Updated: 2024-08-04T11:48:57.974Z
Reserved: 2020-04-21T00:00:00
Link: CVE-2020-12046
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2020-05-14T21:15:13.180
Modified: 2020-05-18T00:56:09.727
Link: CVE-2020-12046
Redhat
No data.