CVE-2025-3321
CVE-2025-3321
9.4
CriticalPublished:
Last updated:
Source:productsecurity@bbraun.com
Deferred
Weakness (CWE)
CVSS Vector
v4.0- Attack Vector
- Local
- Attack Complexity
- Low
- Attack Requirements
- None
- Privileges Required
- None
- User Interaction
- None
- Confidentiality (Vulnerable)
- High
- Integrity (Vulnerable)
- High
- Availability (Vulnerable)
- High
- Confidentiality (Subsequent)
- High
- Integrity (Subsequent)
- High
- Availability (Subsequent)
- High
Description
A predefined administrative account is not documented and cannot be deactivated. This account cannot be misused from the network, only by local users on the server.
References
productsecurity@bbraun.com
https://www.bbraun.com/productsecurity