CVE-2020-12046
IMPROPER VERIFICATION OF CRYPTOGRAPHIC SIGNATURE CWE-347
SoftPAC’s firmware files’ signatures are not verified upon firmware update. This allows an attacker to replace legitimate firmware files with malicious files.
Risk Information
- CVE ID
- CVE-2020-12046
- Vendor
- Opto22
- Product
- SoftAPC
- CVSS v3
- 5.7