Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2021-33886
HistoryAug 25, 2021 - 12:15 p.m.

CVE-2021-33886

2021-08-2512:15:17
CWE-134
[email protected]
web.nvd.nist.gov
2
cve-2021-33886
b. braun spacecom2
input sanitization
remote attacker
command-line access
printf statements

CVSS2

5.8

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:A/AC:L/Au:N/C:P/I:P/A:P

CVSS3

8.8

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS

0.003

Percentile

71.0%

JSON

An improper sanitization of input vulnerability in B. Braun SpaceCom2 prior to 012U000062 allows a remote unauthenticated attacker to gain user-level command-line access by passing a raw external string straight through to printf statements. The attacker is required to be on the same network as the device.

Affected configurations

Nvd
Node
bbraunspacecom2Range<012u000062
AND
bbrauninfusomat_large_volume_pump_871305uMatch-
OR
bbraunspacestation_8713142uMatch-
VendorProductVersionCPE
bbraunspacecom2*cpe:2.3:o:bbraun:spacecom2:*:*:*:*:*:*:*:*
bbrauninfusomat_large_volume_pump_871305u-cpe:2.3:h:bbraun:infusomat_large_volume_pump_871305u:-:*:*:*:*:*:*:*
bbraunspacestation_8713142u-cpe:2.3:h:bbraun:spacestation_8713142u:-:*:*:*:*:*:*:*

Related

cve 1
cvelist 1
cnvd 1
prion 1
thn 1
ics 1
trellix 2
cve
cve
CVE-2021-33886
2021-08-25 12:15:17
cvelist
cvelist
CVE-2021-33886
2021-08-25 11:38:25
cnvd
cnvd
B. Braun SpaceCom2 input validation error vulnerability
2021-08-27 00:00:00
prion
prion
Input validation
2021-08-25 12:15:00
thn
thn
B. Braun Infusomat Pumps Could Let Attackers Remotely Alter Medication Dosages
2021-08-25 10:28:00
ics
ics
B. Braun Infusomat Space Large Volume Pump (Update A)
2022-10-20 12:00:00
trellix
trellix
Vulnerabilities in Globally Used B. Braun Infusion Pump
2021-08-24 00:00:00
Vulnerabilities in Globally Used B. Braun Infusion Pump
2021-08-24 00:00:00

CVSS2

5.8

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:A/AC:L/Au:N/C:P/I:P/A:P

CVSS3

8.8

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS

0.003

Percentile

71.0%

JSON
Related for NVD:CVE-2021-33886
cve1cvelist1cnvd1prion1thn1ics1trellix2