Opto 22 SoftPAC Project Version 9.6 and prior. SoftPAC communication does not include any credentials. This allows an attacker with network access to directly communicate with SoftPAC, including, for example, stopping the service remotely.
References
Link | Resource |
---|---|
https://www.us-cert.gov/ics/advisories/icsa-20-135-01 | Third Party Advisory US Government Resource |
https://www.us-cert.gov/ics/advisories/icsa-20-135-01 | Third Party Advisory US Government Resource |
Configurations
History
21 Nov 2024, 04:55
Type | Values Removed | Values Added |
---|---|---|
References | () https://www.us-cert.gov/ics/advisories/icsa-20-135-01 - Third Party Advisory, US Government Resource |
Information
Published : 2020-05-14 21:15
Updated : 2024-11-21 04:55
NVD link : CVE-2020-10620
Mitre link : CVE-2020-10620
CVE.ORG link : CVE-2020-10620
JSON object : View
Products Affected
opto22
- softpac_project