CVE-2020-12042
N/A
N/A
Summary
Opto 22 SoftPAC Project Version 9.6 and prior. Paths specified within the zip files used to update the SoftPAC firmware are not sanitized. As a result, an attacker with user privileges can gain arbitrary file write access with system access.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | Opto 22 SoftPAC Project | SoftPAC Project Version 9.6 and prior | affected |
Weaknesses
- CWE-347: IMPROPER VERIFICATION OF CRYPTOGRAPHIC SIGNATURE CWE-347
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.