XPath Injection Vulnerability in B. Braun Melsungen AG SpaceCom and Data Module CompactPlus

XPath Injection Vulnerability in B. Braun Melsungen AG SpaceCom and Data Module CompactPlus

CVE-2020-25162 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

A XPath injection vulnerability in the B. Braun Melsungen AG SpaceCom Version L81/U61 and earlier, and the Data module compactplus Versions A10 and A11 allows unauthenticated remote attackers to access sensitive information and escalate privileges.

Learn more about our Web Application Penetration Testing UK.