CVE-2020-12046

IMPROPER VERIFICATION OF CRYPTOGRAPHIC SIGNATURE CWE-347
SoftPAC’s firmware files’ signatures are not verified upon firmware update. This allows an attacker to replace legitimate firmware files with malicious files.

Risk Information

  • CVE ID
  • CVE-2020-12046
  • Vendor
  • Opto22
  • Product
  • SoftAPC
  • CVSS v3
  • 5.7