Vulnerabilities > CVE-2023-41960 - Unspecified vulnerability in Boschrexroth products

CVSS 3.3 - LOW

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

NONE

Integrity impact

LOW

Availability impact

NONE

local

low complexity

boschrexroth

NVD

Published: 2023-10-25

Updated: 2023-11-06

Summary

The vulnerability allows an unprivileged(untrusted) third-party application to interact with a content-provider unsafely exposed by the Android Agent application, potentially modifying sensitive settings of the Android Client application itself.

Vulnerable Configurations

Part	Description	Count
OS	Boschrexroth Boschrexroth Ctrlx HMI WEB Panel Wr2107 Firmware * Boschrexroth Ctrlx HMI WEB Panel Wr2110 Firmware * Boschrexroth Ctrlx HMI WEB Panel Wr2115 Firmware *	3
Hardware	Boschrexroth Boschrexroth Ctrlx HMI WEB Panel Wr2107 - Boschrexroth Ctrlx HMI WEB Panel Wr2110 - Boschrexroth Ctrlx HMI WEB Panel Wr2115 -	3

References

https://psirt.bosch.com/security-advisories/BOSCH-SA-175607.html