CVE-2020-25150

Summary

A relative path traversal attack in the B. Braun Melsungen AG SpaceCom Version L81/U61 and earlier, and the Data module compactplus Versions A10 and A11 allows attackers with service user privileges to upload arbitrary files. By uploading a specially crafted tar file an attacker can execute arbitrary commands.

Affected Software

VendorProductVersion RangeStatus
B. Braun Melsungen AGSpaceComunspecified <= U61affected
B. Braun Melsungen AGSpaceComunspecified <= L81affected
B. Braun Melsungen AGBattery pack with Wi-Fiunspecified <= U61affected
B. Braun Melsungen AGBattery pack with Wi-Fiunspecified <= L81affected
B. Braun Melsungen AGData module compactplusA10affected
B. Braun Melsungen AGData module compactplusA11affected

Weaknesses

  • CWE-23: CWE-23: Relative Path Traversal

Workarounds

As a general security measure, B. Braun recommends protecting the network with appropriate mechanisms:

Ensure the devices are not accessible directly from the Internet.
Use a firewall and isolate the medical devices from the business network. 

Please contact your local B. Braun organization to request further help. For more information please see the B. Braun Security Advisory. https://www.bbraun.com/en/products-and-therapies/services/b-braun-vulnerability-disclosure-policy/security-advisory.html

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References