Vulnerabilities > Bosch > BF OS

DATE CVE VULNERABILITY TITLE RISK
2022-08-01 CVE-2022-36301 Weak Password Requirements vulnerability in Bosch Bf-Os
BF-OS version 3.x up to and including 3.83 do not enforce strong passwords which may allow a remote attacker to brute-force the device password.
network
low complexity
bosch CWE-521
7.5
7.5
2022-08-01 CVE-2022-36302 Injection vulnerability in Bosch Bf-Os
File path manipulation vulnerability in BF-OS version 3.00 up to and including 3.83 allows an attacker to modify the file path to access different resources, which may contain sensitive information.
network
low complexity
bosch CWE-74
5.4
5.4