The service Bizerba Communication Server (BCS) has an unquoted service path. Due to the way Windows searches the executable for the BCS service, malicious programs can be executed.
PUBLISHED5.2CWE-428
Insecure service configuration – unquoted path
Problem type
Affected products
Bizerba
_connect.BRAIN
< 5.02 - AFFECTED
References
GitHub Security Advisories
GHSA-9cjm-jvqx-xq8q
The service Bizerba Communication Server (BCS) has an unquoted service path. Due to the way...
https://github.com/advisories/GHSA-9cjm-jvqx-xq8qThe service Bizerba Communication Server (BCS) has an unquoted service path. Due to the way Windows searches the executable for the BCS service, malicious programs can be executed.
JSON source
Click to expand
{
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"cveMetadata": {
"cveId": "CVE-2025-12507",
"assignerOrgId": "0beee27a-7d8c-424f-8e46-ac453fa147e6",
"assignerShortName": "bizerba",
"dateUpdated": "2025-10-31T18:17:20.171Z",
"dateReserved": "2025-10-30T14:08:49.409Z",
"datePublished": "2025-10-31T15:48:36.371Z",
"state": "PUBLISHED"
},
"containers": {
"cna": {
"providerMetadata": {
"orgId": "0beee27a-7d8c-424f-8e46-ac453fa147e6",
"shortName": "bizerba",
"dateUpdated": "2025-10-31T15:48:36.371Z"
},
"title": "Insecure service configuration – unquoted path",
"descriptions": [
{
"lang": "en",
"value": "The service Bizerba Communication Server (BCS) has an unquoted service path. Due to the way Windows searches the executable for the BCS service, malicious programs can be executed.",
"supportingMedia": [
{
"type": "text/html",
"base64": false,
"value": "The service Bizerba Communication Server (BCS) has an unquoted service path. Due to the way Windows searches the executable for the BCS service, malicious programs can be executed.<br>"
}
]
}
],
"affected": [
{
"vendor": "Bizerba",
"product": "_connect.BRAIN",
"platforms": [
"Windows"
],
"defaultStatus": "affected",
"versions": [
{
"version": "0.0",
"status": "affected",
"versionType": "semver",
"lessThan": "5.02"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"lang": "en",
"description": "CWE-428 Unquoted Search Path or Element",
"cweId": "CWE-428",
"type": "CWE"
}
]
}
],
"references": [
{
"url": "https://www.bizerba.com/downloads/global/information-security/2025/bizerba-sa-2025-0005.pdf"
}
],
"metrics": [
{
"format": "CVSS",
"scenarios": [
{
"lang": "en",
"value": "GENERAL"
}
],
"cvssV3_1": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "CHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH"
}
}
],
"workarounds": [
{
"lang": "en",
"value": "Enclose the service path in the registry in quotes: HKEY_LOCAL_MACHINE\\SYSTEM\\CurrentControlSet\\Services\\BCS\\ImagePath",
"supportingMedia": [
{
"type": "text/html",
"base64": false,
"value": "Enclose the service path in the registry in quotes: HKEY_LOCAL_MACHINE\\SYSTEM\\CurrentControlSet\\Services\\BCS\\ImagePath<br>"
}
]
}
],
"solutions": [
{
"lang": "en",
"value": "Update to version ≥ 5.02",
"supportingMedia": [
{
"type": "text/html",
"base64": false,
"value": "Update to version ≥ 5.02<br>"
}
]
}
],
"timeline": [
{
"time": "2025-01-15T23:00:00.000Z",
"lang": "en",
"value": "Release of new Version _connect.BRAIN 5.02"
},
{
"time": "2025-10-30T23:00:00.000Z",
"lang": "en",
"value": "Publish Security Advisory"
}
]
},
"adp": [
{
"providerMetadata": {
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP",
"dateUpdated": "2025-10-31T18:17:20.171Z"
},
"title": "CISA ADP Vulnrichment",
"metrics": [
{}
]
}
]
}
}