Home

Description

The service Bizerba Communication Server (BCS) has an unquoted service path. Due to the way Windows searches the executable for the BCS service, malicious programs can be executed.

PUBLISHED Reserved 2025-10-30 | Published 2025-10-31 | Updated 2025-10-31 | Assigner bizerba




HIGH: 8.8CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Problem types

CWE-428 Unquoted Search Path or Element

Product status

Default status
affected

0.0 (semver) before 5.02
affected

Timeline

2025-01-15:Release of new Version _connect.BRAIN 5.02
2025-10-30:Publish Security Advisory

References

www.bizerba.com/...on-security/2025/bizerba-sa-2025-0005.pdf

cve.org (CVE-2025-12507)

nvd.nist.gov (CVE-2025-12507)

Download JSON