CVE-2025-3321

Summary

A predefined administrative account is not documented and cannot be deactivated. This account cannot be misused from the network, only by local users on the server.

Affected Software

VendorProductVersion RangeStatus
B. Braun Melsungen AGOnlineSuite3.0affected

Weaknesses

  • CWE-798: CWE-798 Use of Hard-coded Credentials

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References