2 matches found
CVE-2020-10609
CVE-2020-10609 affects Grundfos CIM 500 embedded Ethernet module. The vulnerability is unprotected storage of credentials : the device stores plaintext credentials, enabling read access or modification of system settings by someone with access to the device. Affected version: all prior to v06.16....
Grundfos CIM 500
1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Grundfos Pumps Corporation Equipment: CIM 500 Vulnerabilities: Missing Authentication for Critical Function, Unprotected Storage of Credentials 2. RISK EVALUATION Successful exploitation of these...