Medium severity6.7NVD Advisory· Published Oct 19, 2020· Updated Jun 17, 2026
CVE-2020-11496
CVE-2020-11496
Description
Sprecher SPRECON-E firmware prior to 8.64b might allow local attackers with access to engineering data to insert arbitrary code. This firmware lacks the validation of the input values on the device side, which is provided by the engineering software during parameterization. Attackers with access to local configuration files can therefore insert malicious commands that are executed after compiling them to valid parameter files (“PDLs”), transferring them to the device, and restarting the device.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Sprecher/SPRECON-E firmwaredescription
- Range: <8.64b
Patches
Vulnerability mechanics
References
1- www.sprecher-automation.com/en/it-security/nvdVendor Advisory
News mentions
0No linked articles in our index yet.