Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.
CVE-2020-25184 is a medium severity vulnerability with a CVSS score of 5.5. No known exploits currently, and patches are available.
Please cite this page when referencing data from Strobes VI. Proper attribution helps support our vulnerability intelligence research.
Very low probability of exploitation
EPSS predicts the probability of exploitation in the next 30 days based on real-world threat data, complementing CVSS severity scores with actual risk assessment.
Rockwell Automation ISaGRAF Runtime Versions 4.x and 5.x stores the password in plaintext in a file that is in the same directory as the executable file. ISaGRAF Runtime reads the file and saves the data in a variable without any additional modification. A local, unauthenticated attacker could compromise the user passwords, resulting in information disclosure.
| Vendor | Product |
|---|---|
| Rockwellautomation | Micro820 Firmware |
| Schneider Electric | Saitel Dr |
| Rockwellautomation | Micro810 Firmware |
| Schneider Electric | Epas Gtw |
| Schneider Electric | Pacis Gtw Firmware |
| Schneider Electric | Mc 31 |
| Schneider Electric | Easergy T300 |
| Schneider Electric | Easergy C5 Firmware |
| Rockwellautomation | Micro850 Firmware |
| Xylem | Multismart Firmware |
And 21 more...