18 matches found
EUVD-2020-3053
Malware in sbrugna...
EUVD-2020-3057
Malware in sbrugna...
dk.grundfos.com Cross Site Scripting vulnerability OBB-1392910
Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website operator about its existence...
CVE-2020-10609
Grundfos CIM 500 v06.16.00 stores plaintext credentials, which may allow sensitive information to be read or allow modification to system settings by someone with access to the device...
CVE-2020-10609
Grundfos CIM 500 v06.16.00 stores plaintext credentials, which may allow sensitive information to be read or allow modification to system settings by someone with access to the device...
Information disclosure
Grundfos CIM 500 v06.16.00 stores plaintext credentials, which may allow sensitive information to be read or allow modification to system settings by someone with access to the device...
CVE-2020-10609
Grundfos CIM 500 v06.16.00 stores plaintext credentials, which may allow sensitive information to be read or allow modification to system settings by someone with access to the device...
CVE-2020-10609
CVE-2020-10609 affects Grundfos CIM 500 embedded Ethernet module. The vulnerability is unprotected storage of credentials : the device stores plaintext credentials, enabling read access or modification of system settings by someone with access to the device. Affected version: all prior to v06.16....
CVE-2020-10605
Grundfos CIM 500 before v06.16.00 responds to unauthenticated requests for password storage files...
CVE-2020-10605
Grundfos CIM 500 before v06.16.00 responds to unauthenticated requests for password storage files...
Default credentials
Grundfos CIM 500 before v06.16.00 responds to unauthenticated requests for password storage files...
CVE-2020-10605
Grundfos CIM 500 before v06.16.00 responds to unauthenticated requests for password storage files...
CVE-2020-10605
CVE-2020-10605 affects Grundfos CIM 500 (all versions prior to v06.16.00). The root cause is missing authentication for a critical function that allows unauthenticated access to password storage files, effectively exposing plaintext credentials. Impact, as documented, includes unauthorized access...
Grundfos CIM 500 Access Control Error Vulnerability
The Grundfos CIM 500 is an Ethernet module from the Danish company Grundfos. An access control error vulnerability exists in Grundfos CIM 500 versions prior to v06.16.00. An attacker could exploit the vulnerability to request password-stored files without authentication...
Grundfos CIM 500 Unprotected Credential Storage Vulnerability
The Grundfos CIM 500 is an Ethernet module from the Danish company Grundfos. A security vulnerability exists in Grundfos CIM 500 versions prior to v06.16.00, which stems from the program storing credentials in plaintext form. An attacker could exploit the vulnerability to read sensitive informati...
Grundfos CIM 500
1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Grundfos Pumps Corporation Equipment: CIM 500 Vulnerabilities: Missing Authentication for Critical Function, Unprotected Storage of Credentials 2. RISK EVALUATION Successful exploitation of these...
pompe-grundfos.ro XSS vulnerability
Open Bug Bounty ID: OBB-569707 Description| Value ---|--- Affected Website:| pompe-grundfos.ro Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
grundfos.com XSS vulnerability
Open Bug Bounty ID: OBB-552308 Description| Value ---|--- Affected Website:| grundfos.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Disclosure...