Vulnerabilities > Bosch > Divar IP 5000 Firmware
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-06-15 | CVE-2023-28175 | Incorrect Authorization vulnerability in Bosch products Improper Authorization in SSH server in Bosch VMS 11.0, 11.1.0, and 11.1.1 allows a remote authenticated user to access resources within the trusted internal network via a port forwarding request. | 7.7 |
| 2021-02-26 | CVE-2019-11684 | Missing Authentication for Critical Function vulnerability in Bosch products Improper Access Control in the RCP+ server of the Bosch Video Recording Manager (VRM) component allows arbitrary and unauthenticated access to a limited subset of certificates, stored in the underlying Microsoft Windows operating system. | 9.8 |
| 2020-02-07 | CVE-2020-6769 | Missing Authentication for Critical Function vulnerability in Bosch products Missing Authentication for Critical Function in the Bosch Video Streaming Gateway (VSG) allows an unauthenticated remote attacker to retrieve and set arbitrary configuration data of the Video Streaming Gateway. | 9.1 |
| 2019-05-13 | CVE-2019-8952 | Path Traversal vulnerability in Bosch products A Path Traversal vulnerability located in the webserver affects several Bosch hardware and software products. | 6.5 |
| 2019-05-13 | CVE-2019-8951 | Open Redirect vulnerability in Bosch products An Open Redirect vulnerability located in the webserver affects several Bosch hardware and software products. | 6.1 |