Primary

Context

Bizerba BRAIN2 Unencrypted Active Directory Communication Vulnerability

Vulnerability

A vulnerability exists in Bizerba BRAIN2 versions prior to 3.07, where communication with Active Directory services is unencrypted when domain users are used as BRAIN2 users. This flaw can result in the interception of authentication data, compromising confidentiality.

Impact

Exploitation of this vulnerability could lead to the interception of authentication data, allowing for potential unauthorized access or actions within the application or system.

Remediation

Users are advised to update to Bizerba BRAIN2 version 3.07 or later, and to avoid using domain users as BRAIN2 users in unprotected networks. Instead, local BRAIN2 users should be used.

Added: Oct 31, 2025, 4:23 PM

Updated: Oct 31, 2025, 4:23 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

6.2

remediation

0.0

relevance

0.8

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

6.2

remediation

0.0

relevance

0.8

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Bizerba BRAIN2 Unencrypted Active Directory Communication Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating