Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2021-33885

CVSS 10.0 · Critical EPSS 6.92% · P91
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2021-33885

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
An Insufficient Verification of Data Authenticity vulnerability in B. Braun SpaceCom2 prior to 012U000062 allows a remote unauthenticated attacker to send the device malicious data that will be used in place of the correct data. This results in full system command access and execution because of the lack of cryptographic signatures on critical data sets.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:N
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
B.Braun SpaceCom2 数据伪造问题漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
B. Braun SpaceCom2是德国贝朗(B. Braun)公司的一款硬件设备,用于连接外部设备以在患者数据管理系统、PC 或 USB 记忆棒中记录数据。 B.Braun SpaceCom2 012U000062之前版本存在安全漏洞,该漏洞源于应用数据真实性验证不足,远程攻击者可以向设备发送恶意数据,这些数据将用于代替正确数据。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2021-33885

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2021-33885

登录查看更多情报信息。

Same Patch Batch · n/a · 2021-08-25 · 38 CVEs total

CVE-2021-338868.1 HIGHB. Braun SpaceCom2 格式化字符串错误漏洞
CVE-2021-338826.8 MEDIUMB. Braun SpaceCom2 访问控制错误漏洞
CVE-2021-338846.5 MEDIUMB.Braun SpaceCom2 代码问题漏洞
CVE-2021-338835.9 MEDIUMB. Braun SpaceCom2 安全漏洞
CVE-2021-32975Horner Automation Cscape 缓冲区错误漏洞
CVE-2021-33015Horner Automation Cscape 缓冲区错误漏洞
CVE-2021-32995Horner Automation Cscape 缓冲区错误漏洞
CVE-2020-18976Appneta Tcpreplay 缓冲区错误漏洞
CVE-2020-18974Netwide Assembler 缓冲区错误漏洞
CVE-2020-18972Sourceforge PoDoFo 信息泄露漏洞
CVE-2020-18971Sourceforge PoDoFo 缓冲区错误漏洞
CVE-2018-10790Bento4 安全漏洞
CVE-2021-40086Primekey Solutions PrimeKey EJBCA 信息泄露漏洞
CVE-2021-40087Primekey Solutions PrimeKey EJBCA 安全漏洞
CVE-2021-40088Primekey Solutions PrimeKey EJBCA 安全漏洞
CVE-2021-40089Primekey Solutions PrimeKey EJBCA 安全漏洞
CVE-2021-40083Knot Resolver 安全漏洞
CVE-2021-40084opensysusers 代码注入漏洞
CVE-2021-3605Industrial Light And Magic(lim) OpenEXR 缓冲区错误漏洞
CVE-2021-21848GPAC Project Advanced Content 缓冲区错误漏洞

Showing top 20 of 38 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2021-33885

No comments yet

Leave a comment