What the vulnerability does

01Description

Opto 22 SoftPAC Project Version 9.6 and prior. SoftPAC does not specify the path of multiple imported .dll files. Therefore, an attacker can replace them and execute code whenever the service starts.

Key dates

02Disclosure timeline

May 14, 2020 CVE published
August 4, 2024 Record updated