VYPR
Vendor

Bizerba

Products
3
CVEs
5
Across products
5
Status
Private

Products

3

Recent CVEs

5
  • CVE-2025-6512CriJun 23, 2025
    risk 0.65cvss 10.0epss 0.00

    On a client with a non-admin user, a script can be integrated into a report. The reports could later be executed on the BRAIN2 server with administrator rights.

  • CVE-2025-6513CriJun 23, 2025
    risk 0.60cvss 9.3epss 0.00

    Standard Windows users can access the configuration file for database access of the BRAIN2 application and decrypt it.

  • CVE-2025-12509HigOct 31, 2025
    risk 0.55cvss 8.4epss 0.00

    On a client with an admin user, a Global_Shipping script can be implemented. The script could later be executed on the BRAIN2 server with administrator rights.

  • CVE-2025-12508HigOct 31, 2025
    risk 0.55cvss 8.4epss 0.00

    When using domain users as BRAIN2 users, communication with Active Directory services is unencrypted. This can lead to the interception of authentication data and compromise confidentiality.

  • CVE-2025-2819MedMar 26, 2025
    risk 0.43cvss 6.6epss 0.00

    There is a risk of unauthorized file uploads in GT-SoftControl and potential file overwrites due to insufficient validation in the file selection process. This could lead to data integrity issues and unauthorized access by an authenticated privileged user.