CVE-2020-16280

EUVD-2020-8241
Multiple Rangee GmbH RangeeOS 8.0.4 modules store credentials in plaintext including credentials of users for several external facing administrative services, domain joined users, and local administrators. To exploit the vulnerability a local attacker must have access to the underlying operating system.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.5 MEDIUM
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 14%
Affected Products (NVD)
VendorProductVersion
rangeerangeeos
8.0.4
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://www.contextis.com/en/resources/advisories/cve-2020-16280
https://www.contextis.com/en/resources/advisories/cve-2020-16280