CVE-2020-25172

Description

A relative path traversal attack in the B. Braun OnlineSuite Version AP 3.0 and earlier allows unauthenticated attackers to upload or download arbitrary files.

Affected products

• B. Braun Melsungen AG / OnlineSuiteAP – 3.0

References

• VENDOR_ADVISORYhttps://us-cert.cisa.gov/ics/advisories/icsma-20-296-01