CVE-2020-25152

A session fixation vulnerability in the B. Braun Melsungen AG SpaceCom administrative interface Version L81/U61 and earlier, and the Data module compactplus Versions A10 and A11 allows remote attackers to hijack web sessions and escalate privileges.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

AND
OR cpe:2.3:o:bbraun:datamodule_compactplus:a10:*:*:*:*:*:*:*
cpe:2.3:o:bbraun:datamodule_compactplus:a11:*:*:*:*:*:*:*
cpe:2.3:h:bbraun:datamodule_compactplus:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:bbraun:spacecom:*:*:*:*:*:*:*:*
cpe:2.3:h:bbraun:spacecom:-:*:*:*:*:*:*:*

Information

Published : 2022-04-14 14:15

Updated : 2022-04-21 13:19


NVD link : CVE-2020-25152

Mitre link : CVE-2020-25152


JSON object : View

CWE
CWE-384

Session Fixation

Advertisement

dedicated server usa

Products Affected

bbraun

  • spacecom
  • datamodule_compactplus