CRITICAL
Eppendorf
CVE published 2026-05-26
CVE-2026-7251
A critical vulnerability in Eppendorf BioFlo 320 bioreactor systems exposes remote management interfaces to unauthenticated takeover. The embedded VNC server uses a hard-coded password, allowing any remote attacker who can reach the device to gain full administrative control of the bioprocessing unit. The VNC traffic is transmitted without encryption, compounding exposure to credential theft and session h [truncated]