CVE-2020-16238

CVE-2020-16238 affects B. Braun SpaceCom/Lx configurations and Data module compactplus (versions L81/U61 and earlier outside US; A10/A11 in compactplus). The root cause is an improper privilege escalation via the configuration import mechanism, enabling attackers with local command‑line access to...

CVE-2020-25150 B. Braun SpaceCom, Battery Pack SP with Wi-Fi, and Data module compactplus

A relative path traversal attack in the B. Braun Melsungen AG SpaceCom Version L81/U61 and earlier, and the Data module compactplus Versions A10 and A11 allows attackers with service user privileges to upload arbitrary files. By uploading a specially crafted tar file an attacker can execute...

CVE-2020-25150

CVE-2020-25150 describes a relative path traversal vulnerability in B. Braun Melsungen AG SpaceCom (versions L81/U61 and earlier) and Data module compactplus (versions A10 and A11). The underlying issue enables attackers with service-user privileges to upload arbitrary files via a crafted tar fil...

CVE-2021-33883

A Cleartext Transmission of Sensitive Information vulnerability in B. Braun SpaceCom2 prior to 012U000062 allows a remote attacker to obtain sensitive information by snooping on the network traffic. The exposed data includes critical values for a pump's internal configuration...

B. Braun Infusomat Pumps Could Let Attackers Remotely Alter Medication Dosages

Cybersecurity researchers have disclosed five previously unreported security vulnerabilities affecting B. Braun's Infusomat Space Large Volume Pump and SpaceStation that could be abused by malicious parties to tamper with medication doses without any prior authentication. McAfee, which discovered...

B.Braun SpaceCom2 代码问题漏洞

The B. Braun SpaceCom2 is a hardware device from B. Braun, Germany, designed to connect to external devices to record data in a patient data management system, PC, or USB memory stick. A security vulnerability exists in versions of the B. Braun SpaceCom2 prior to 012U000062, which allows a remote...

Open redirect

An open redirect issue was discovered in B. Braun Medical SpaceCom module, which is integrated into the SpaceStation docking station: SpaceStation with SpaceCom module integrated as part number 8713142U, software versions prior to Version 012U000040, and SpaceStation part number 8713140U with...

CVE-2017-6018

An open redirect issue was discovered in B. Braun Medical SpaceCom module, which is integrated into the SpaceStation docking station: SpaceStation with SpaceCom module integrated as part number 8713142U, software versions prior to Version 012U000040, and SpaceStation part number 8713140U with...

CVE-2017-6018

Summary : CVE-2017-6018 describes an open redirect in B. Braun Medical’s SpaceCom module, used with SpaceStation docking stations. Affected products/versions : SpaceCom module integrated in SpaceStation (part 8713142U) and SpaceStation with SpaceCom module (part 8713160U), both with software vers...

CVE-2017-6018

An open redirect issue was discovered in B. Braun Medical SpaceCom module, which is integrated into the SpaceStation docking station: SpaceStation with SpaceCom module integrated as part number 8713142U, software versions prior to Version 012U000040, and SpaceStation part number 8713140U with...

B. Braun SpaceCom Module Open Redirect Vulnerability

The B. Braun SpaceCom Module is a product designed to facilitate the exchange of information in healthcare systems by connecting hospital network systems to external clinical systems, entering data, medical history, service information, etc. to connected workstations. B. An open redirection...

ICSMA-17-082-02_B. Braun Medical SpaceCom Open Redirect Vulnerability

OVERVIEW This advisory was originally posted to the NCCIC Portal on March 23, 2017, and is being released to the ICS-CERT web site. Marc Ruef and Rocco Gagliardi of scip AG have identified an open redirect vulnerability in B. Braun Medical’s SpaceCom module, which is integrated into the...