CVSS: 5.9EPSS: 0%CPEs: 20EXPL: 0CVE-2023-35867
https://notcve.org/view.php?id=CVE-2023-35867
An improper handling of a malformed API answer packets to API clients in Bosch BT software products can allow an unauthenticated attacker to cause a Denial of Service (DoS) situation. To exploit this vulnerability an attacker has to replace an existing API server e.g. through Man-in-the-Middle attacks. Un manejo inadecuado de paquetes de respuesta API con formato incorrecto para clientes API en productos de software Bosch BT puede permitir que un atacante no autenticado provoque una situación de denegación de servicio (DoS). Para aprovechar esta vulnerabilidad, un atacante debe reemplazar un servidor API existente, por ejemplo mediante ataques Man-in-the-Middle. • https://psirt.bosch.com/security-advisories/BOSCH-SA-092656-BT.html • CWE-703: Improper Check or Handling of Exceptional Conditions •
CVSS: 7.7EPSS: 0%CPEs: 22EXPL: 0CVE-2023-28175
https://notcve.org/view.php?id=CVE-2023-28175
Improper Authorization in SSH server in Bosch VMS 11.0, 11.1.0, and 11.1.1 allows a remote authenticated user to access resources within the trusted internal network via a port forwarding request. • https://psirt.bosch.com/security-advisories/BOSCH-SA-025794-bt.html • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor CWE-863: Incorrect Authorization •
CVSS: 9.0EPSS: 0%CPEs: 14EXPL: 0CVE-2021-23862 – Authenticated Remote Code Execution
https://notcve.org/view.php?id=CVE-2021-23862
A crafted configuration packet sent by an authenticated administrative user can be used to execute arbitrary commands in system context. This issue also affects installations of the VRM, DIVAR IP, BVMS with VRM installed, the VIDEOJET decoder (VJD-7513 and VJD-8000). Un paquete de configuración diseñado enviado por un usuario administrativo autenticado puede ser usado para ejecutar comandos arbitrarios en el contexto del sistema. Este problema también afecta a las instalaciones de VRM, DIVAR IP, BVMS con VRM instalado, el decodificador VIDEOJET (VJD-7513 y VJD-8000) • https://psirt.bosch.com/security-advisories/bosch-sa-043434-bt.html • CWE-20: Improper Input Validation CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 6.5EPSS: 0%CPEs: 10EXPL: 0CVE-2021-23861 – Possible Access to Debug Functions in Bosch VRM / BVMS
https://notcve.org/view.php?id=CVE-2021-23861
By executing a special command, an user with administrative rights can get access to extended debug functionality on the VRM allowing an impact on integrity or availability of the installed software. This issue also affects installations of the DIVAR IP and BVMS with VRM installed. Al ejecutar un comando especial, un usuario con derechos administrativos puede conseguir acceso a la funcionalidad extended debug en el VRM permitiendo un impacto en la integridad o disponibilidad del software instalado. Este problema también afecta a las instalaciones de DIVAR IP y BVMS con VRM instalado • https://psirt.bosch.com/security-advisories/bosch-sa-043434-bt.html • CWE-489: Active Debug Code •
CVSS: 6.1EPSS: 0%CPEs: 10EXPL: 0CVE-2021-23860 – Reflected Cross Site Scripting (XSS) vulnerability in Bosch VRM / BVMS
https://notcve.org/view.php?id=CVE-2021-23860
An error in a page handler of the VRM may lead to a reflected cross site scripting (XSS) in the web-based interface. To exploit this vulnerability an attack must be able to modify the HTTP header that is sent. This issue also affects installations of the DIVAR IP and BVMS with VRM installed. Un error en un manejador de páginas del VRM puede conllevar a un ataque de tipo un cross site scripting (XSS) reflejado en la interfaz basada en la web. Para explotar esta vulnerabilidad un ataque debe ser capaz de modificar el encabezado HTTP que es enviado. • https://psirt.bosch.com/security-advisories/bosch-sa-043434-bt.html • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •