ICSA-20-135-01 · Published 2020-05-14 · View on CISA ICS-CERT ↗

Opto 22 SoftPAC Project

CVSS 9.8 CRITICAL

Risk Summary

Successful exploitation of these vulnerabilities could allow arbitrary file write access with system access, start or stop service, allow remote code execution, and limit system availability.

CVEs (5)

CVE-2020-12042 CVE-2020-12046 CVE-2020-10612 CVE-2020-10616 CVE-2020-10620

Remediations

Opto 22 released PAC Project 10.3 it is available for download
PAC Project Professional
PAC Project Basic
Questions concerning this release can be emailed to: [email protected]

Affected Vendors

Opto 22

Affected Products (1)

Opto 22 · SoftPAC Project <= 9.6

Affected Sectors

Commercial Facilities, Critical Manufacturing, Information Technology, Transportation Systems

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more