CVE-2020-12046

medium

Description

Opto 22 SoftPAC Project Version 9.6 and prior. SoftPAC’s firmware files’ signatures are not verified upon firmware update. This allows an attacker to replace legitimate firmware files with malicious files.

References

https://www.us-cert.gov/ics/advisories/icsa-20-135-01

Details

Source: Mitre, NVD

Published: 2020-05-14

Updated: 2026-06-17

Risk Information

CVSS v2

Base Score: 3.5

Vector: CVSS2#AV:N/AC:M/Au:S/C:N/I:P/A:N

Severity: Low

CVSS v3

Base Score: 5.7

Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:N

Severity: Medium

EPSS

EPSS: 0.00077

Detections

Analytics