Primary

Context

Bizerba BRAIN2 Server Script Execution Vulnerability via Reports

Vulnerability

A critical vulnerability exists in Bizerba BRAIN2 Server versions prior to 3.06, allowing non-admin users to embed scripts into reports. These reports can later be executed on the BRAIN2 server with administrator privileges, potentially leading to unauthorized actions or access.

Impact

Exploitation of this vulnerability allows for arbitrary script execution on the BRAIN2 server with admin rights, which could be used to perform unauthorized actions or access sensitive information.

Remediation

Users are advised to update to Bizerba BRAIN2 version 3.06 or later. Alternatively, BRAIN2 users can be deprived of the right to edit reports, preventing the integration of scripts.

Added: Jun 23, 2025, 1:17 PM

Updated: Jun 23, 2025, 1:17 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

6.6

remediation

0.0

relevance

0.2

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

6.6

remediation

0.0

relevance

0.2

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Bizerba BRAIN2 Server Script Execution Vulnerability via Reports

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating