CVE-2020-12001

IMPROPER INPUT VALIDATION CWE-20
The parsing mechanism that processes certain file types does not provide input sanitation. This may allow an attacker to use specially crafted files to traverse the file system and modify or expose sensitive data or execute arbitrary code.

Risk Information

  • CVE ID
  • CVE-2020-12001
  • Vendor
  • Rockwell Automation
  • Product
  • FactoryTalk Linx
  • CVSS v3
  • 9.6