Unrated severityNVD Advisory· Published Apr 14, 2022· Updated Apr 16, 2025

B. Braun SpaceCom, Battery Pack SP with Wi-Fi, and Data module compactplus

CVE-2020-25166

Description

An improper verification of the cryptographic signature of firmware updates of the B. Braun Melsungen AG SpaceCom Version L81/U61 and earlier, and the Data module compactplus Versions A10 and A11 allows attackers to generate valid firmware updates with arbitrary content that can be used to tamper with devices.

Affected products

B. Braun Melsungen Ag/Data Module Compactplusv5
Range: A10
B. Braun Melsungen Ag/Spacecomv5
Range: unspecified

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.bbraun.com/en/products-and-therapies/services/b-braun-vulnerability-disclosure-policy/security-advisory.htmlmitrex_refsource_CONFIRM
www.cisa.gov/uscert/ics/advisories/icsma-20-296-02mitrex_refsource_CONFIRM

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000