Unrated severityNVD Advisory· Published Apr 14, 2022· Updated Apr 16, 2025

B. Braun SpaceCom, Battery Pack SP with Wi-Fi, and Data module compactplus

CVE-2020-25158

Description

A reflected cross-site scripting (XSS) vulnerability in the B. Braun Melsungen AG SpaceCom Version L81/U61 and earlier, and the Data module compactplus Versions A10 and A11 allows remote attackers to inject arbitrary web script or HTML into various locations.

Affected products

B. Braun Melsungen Ag/Data Module Compactplusv5
Range: A10
B. Braun Melsungen Ag/Spacecomv5
Range: unspecified

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.bbraun.com/en/products-and-therapies/services/b-braun-vulnerability-disclosure-policy/security-advisory.htmlmitrex_refsource_CONFIRM
www.cisa.gov/uscert/ics/advisories/icsma-20-296-02mitrex_refsource_CONFIRM

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000