Remote Code Execution Vulnerability in B. Braun's Software Products
CVE-2025-3322

10CRITICAL

Key Information:

Vendor: B. Braun Melsungen Ag
Status: Onlinesuite
Vendor: CVE Published:; 6 June 2025

🔔 Create B. Braun Melsungen Ag Vulnerability Alert

What is CVE-2025-3322?

A vulnerability exists in B. Braun's software that permits remote code execution due to improper sanitization of user inputs within expression languages. This flaw enables malicious actors to gain elevated privileges on the server, potentially allowing unauthorized access and control over sensitive data and functions. Users of affected versions are urged to implement security measures to protect against exploitation.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

OnlineSuite 3.0

References

https://www.bbraun.com/productsecurity

CVSS V4

Score:

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Timeline

Vulnerability published
Jun 6, 2025
Vulnerability Reserved
Apr 5, 2025

Credit

Fabian Weber (CODE WHITE GmbH)

Dr. Florian Hauser (CODE WHITE GmbH)

JSON

B. Braun Melsungen Ag

What is CVE-2025-3322?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

Affected Version(s)

References

CVSS V4

Timeline

Credit

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.