Vulnerability Details CVE-2021-33882
A Missing Authentication for Critical Function vulnerability in B. Braun SpaceCom2 prior to 012U000062 allows a remote attacker to reconfigure the device from an unknown source because of lack of authentication on proprietary networking commands.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 47.3%
CVSS Severity
CVSS v3 Score 6.8
CVSS v2 Score 5.0
References
- https://www.bbraunusa.com/en.htm
- https://www.mcafee.com/blogs/enterprise/mcafee-enterprise-atr/mcafee-enterprise-atr-uncovers-vulnerabilities-in-globally-used-b-braun-infusion-pump/
- https://www.bbraunusa.com/en.htm
- https://www.mcafee.com/blogs/enterprise/mcafee-enterprise-atr/mcafee-enterprise-atr-uncovers-vulnerabilities-in-globally-used-b-braun-infusion-pump/
Products affected by CVE-2021-33882
-
cpe:2.3:h:bbraun:infusomat_large_volume_pump_871305u:-
-
cpe:2.3:h:bbraun:spacestation_8713142u:-
-
cpe:2.3:o:bbraun:spacecom2:-