04/2021: B. Braun Information concerning Name:Wreck

Cybersecurity firm Forescout Research Labs has discovered and disclosed 9 vulnerabilities in several DNS implementations.

These vulnerabilities relate to DNS implementations and can cause Denial of Service or Remote Code Execution, allowing attackers to take targeted IT, IoT or OT devices offline or take control of them. It affects four popular TCP/IP stacks.

Vulnerability Summary 

Cybersecurity firm Forescout Research Labs has discovered a new set of 9 several DNS implementations.

These vulnerabilities relate to DNS implementations and can cause Denial of Service or Remote Code Execution, allowing attackers to take targeted IT, IoT or OT devices offline or take control of them. It affects four popular TCP/IP stacks.

Analysis & Action 

B. Braun’s first analysis determined that NONE of our connected devices 

• Infusion system SpacePlus®
• Infusion system Space® 
• Infusion system compactplus®
• Clinical IT Solution OnlineSuite

are affected. 

Recommendations

As our clinical IT solutions are installed on standard Windows Servers, we highly recommend reviewing Microsoft’s recommendations and advises concerning the issue. Our B.Braun security team is also available to support if questions arise.  

References

Website Forescout Labs – Security Researcher Name:WRECK – Forescout

Contact Information & further Information 

You can also contact our global security team if you have any further questions, require detailed technical information, or any other support issue concerning Cybersecurity.

You can send an e-mail productsecurity@bbraun.com.