15 matches found
EUVD-2020-3053
Malware in sbrugna...
EUVD-2020-3057
Malware in sbrugna...
CVE-2020-10609
Grundfos CIM 500 v06.16.00 stores plaintext credentials, which may allow sensitive information to be read or allow modification to system settings by someone with access to the device...
CVE-2020-10609
Grundfos CIM 500 v06.16.00 stores plaintext credentials, which may allow sensitive information to be read or allow modification to system settings by someone with access to the device...
Information disclosure
Grundfos CIM 500 v06.16.00 stores plaintext credentials, which may allow sensitive information to be read or allow modification to system settings by someone with access to the device...
CVE-2020-10609
Grundfos CIM 500 v06.16.00 stores plaintext credentials, which may allow sensitive information to be read or allow modification to system settings by someone with access to the device...
CVE-2020-10609
CVE-2020-10609 affects Grundfos CIM 500 embedded Ethernet module. The vulnerability is unprotected storage of credentials : the device stores plaintext credentials, enabling read access or modification of system settings by someone with access to the device. Affected version: all prior to v06.16....
CVE-2020-10605
Grundfos CIM 500 before v06.16.00 responds to unauthenticated requests for password storage files...
CVE-2020-10605
Grundfos CIM 500 before v06.16.00 responds to unauthenticated requests for password storage files...
Default credentials
Grundfos CIM 500 before v06.16.00 responds to unauthenticated requests for password storage files...
CVE-2020-10605
Grundfos CIM 500 before v06.16.00 responds to unauthenticated requests for password storage files...
CVE-2020-10605
CVE-2020-10605 affects Grundfos CIM 500 (all versions prior to v06.16.00). The root cause is missing authentication for a critical function that allows unauthenticated access to password storage files, effectively exposing plaintext credentials. Impact, as documented, includes unauthorized access...
Grundfos CIM 500 Unprotected Credential Storage Vulnerability
The Grundfos CIM 500 is an Ethernet module from the Danish company Grundfos. A security vulnerability exists in Grundfos CIM 500 versions prior to v06.16.00, which stems from the program storing credentials in plaintext form. An attacker could exploit the vulnerability to read sensitive informati...
Grundfos CIM 500 Access Control Error Vulnerability
The Grundfos CIM 500 is an Ethernet module from the Danish company Grundfos. An access control error vulnerability exists in Grundfos CIM 500 versions prior to v06.16.00. An attacker could exploit the vulnerability to request password-stored files without authentication...
Grundfos CIM 500
1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Grundfos Pumps Corporation Equipment: CIM 500 Vulnerabilities: Missing Authentication for Critical Function, Unprotected Storage of Credentials 2. RISK EVALUATION Successful exploitation of these...