Vulnerabilities > Bosch > B426 Firmware > Medium

DATE CVE VULNERABILITY TITLE RISK
2021-06-18 CVE-2021-23845 Unspecified vulnerability in Bosch products
This vulnerability could allow an attacker to hijack a session while a user is logged in the configuration web page.
network
bosch
6.8
2021-06-18 CVE-2021-23846 Cleartext Transmission of Sensitive Information vulnerability in Bosch B426 Firmware
When using http protocol, the user password is transmitted as a clear text parameter for which it is possible to be obtained by an attacker through a MITM attack.
network
bosch CWE-319
4.3