CVE-2021-33882
MEDIUMB. Braun SpaceCom2 < 012U000062 - Unauthenticated Device Reconfiguration via Proprietary Networking Commands
Title source: llmDescription
A Missing Authentication for Critical Function vulnerability in B. Braun SpaceCom2 prior to 012U000062 allows a remote attacker to reconfigure the device from an unknown source because of lack of authentication on proprietary networking commands.
References (2)
Core 2
Core References
Broken Link x_refsource_misc
https://www.bbraunusa.com/en.htm
Third Party Advisory x_refsource_misc
https://www.mcafee.com/blogs/enterprise/mcafee-enterprise-atr/mcafee-enterprise-atr-uncovers-vulnerabilities-in-globally-used-b-braun-infusion-pump/
Scores
CVSS v3
6.8
EPSS
0.0110
EPSS Percentile
61.4%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:N
Details
CWE
CWE-306
Status
published
Products (1)
bbraun/spacecom2
< 012u000062
Published
Aug 25, 2021
Tracked Since
Feb 18, 2026