RSS   Podatności dla
'Onlinesuite application package'
   RSS

2020-11-06
 
CVE-2020-25174

CWE-427
 

 
A DLL hijacking vulnerability in the B. Braun OnlineSuite Version AP 3.0 and earlier allows local attackers to execute code on the system as a high privileged user.

 
 
CVE-2020-25172

CWE-23
 

 
A relative path traversal attack in the B. Braun OnlineSuite Version AP 3.0 and earlier allows unauthenticated attackers to upload or download arbitrary files.

 
 
CVE-2020-25170

CWE-1236
 

 
An Excel Macro Injection vulnerability exists in the export feature in the B. Braun OnlineSuite Version AP 3.0 and earlier via multiple input fields that are mishandled in an Excel export.

 

 >>> Vendor: Bbraun 2 Produkty
Station firmware
Onlinesuite application package


Copyright 2024, cxsecurity.com

 

Back to Top