PT-2025-44645 · Bizerba · Bizerba Communication Server
Published
2025-10-31
·
Updated
2025-10-31
·
CVE-2025-12507
CVSS v3.1
8.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Bizerba Communication Server (BCS) (affected versions not specified)
Description
The Bizerba Communication Server (BCS) service has an unquoted service path. This occurs when the Windows service's executable path contains spaces but is not enclosed in quotes. This misconfiguration allows an attacker with local system access to potentially execute malicious code by exploiting the service startup process. The BCS is used in Bizerba's industrial or retail weighing solutions.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
LPE
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Bizerba Communication Server