Vulnerabilities in Bosch
70 resultsCVE-2020-6779CRITICALHard-coded Credentials in the Database of Bosch FSM-2500 Server and Bosch FSM-5000 ServerEPSS 3.7%CVE-2020-6770CRITICALDeserialization of Untrusted Data in Bosch BVMS Mobile Video ServiceEPSS 3.6%CVE-2022-32534HIGHOS Command InjectionEPSS 2.3%CVE-2020-6769CRITICALMissing Authentication for Critical Function in Bosch Video Streaming GatewayEPSS 2.2%CVE-2019-11897HIGHServer-side request forgery in the backup & restore functionality of ProSyst mBS SDK and Bosch IoT Gateway SoftwareEPSS 1.8%CVE-2020-6768HIGHPath Traversal in Bosch Video Management System (BVMS)EPSS 1.7%CVE-2021-23850MEDIUMBuffer Overflow vulnerability in the recovery image telnet serverEPSS 1.5%CVE-2021-23851MEDIUMBuffer Overflow vulnerability in the recovery image web-based interfaceEPSS 1.5%CVE-2023-39509HIGHA command injection vulnerability exists in Bosch IP cameras that allows an authenticated user with administrative rights to run arbitrary cEPSS 1.5%CVE-2021-23847CRITICALUnauthenticated Information Extraction VulnerabilityEPSS 1.4%CVE-2021-23862HIGHAuthenticated Remote Code ExecutionEPSS 1.4%CVE-2020-6767HIGHPath Traversal in Bosch Video Management System (BVMS)EPSS 1.3%CVE-2024-25002HIGHCommand Injection in the diagnostics interface of the Bosch Network Synchronizer allows unauthorized users full access to the device.EPSS 1.2%CVE-2019-11899HIGHAn unauthenticated attacker can achieve unauthorized access to sensitive data by exploiting Windows SMB protocol on a client installation. WEPSS 1.1%CVE-2019-11898CRITICALUnauthorized APE administration privileges can be achieved by reverse engineering one of the APE service tools. The service tool is discontiEPSS 1.1%CVE-2019-11892HIGHImproper access control in the JSON-RPC interface of the Bosch Smart Home Controller (SHC)EPSS 1.0%CVE-2019-11895MEDIUMImproper access control in the JSON-RPC interface of the Bosch Smart Home Controller (SHC)EPSS 1.0%CVE-2021-23859CRITICALDenial of Service and Authentication Bypass Vulnerability in multiple Bosch productsEPSS 1.0%CVE-2022-32536HIGHPrivilege EscalationEPSS 1.0%CVE-2021-23853HIGHImproper Input Validation of HTTP HeadersEPSS 0.9%