Vulnerabilities > Bosch
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-05-29 | CVE-2019-11894 | Unspecified vulnerability in Bosch Smart Home Controller Firmware A potential improper access control vulnerability exists in the backup mechanism of the Bosch Smart Home Controller (SHC) before 9.8.905 that may result in unauthorized download of a backup. low complexity bosch | 5.7 |
| 2019-05-29 | CVE-2019-11893 | Improper Privilege Management vulnerability in Bosch Smart Home Controller Firmware A potential incorrect privilege assignment vulnerability exists in the app permission update API of the Bosch Smart Home Controller (SHC) before 9.8.905 that may result in a restricted app obtaining default app permissions. | 8.0 |
| 2019-05-29 | CVE-2019-11892 | Unspecified vulnerability in Bosch Smart Home Controller Firmware A potential improper access control vulnerability exists in the JSON-RPC interface of the Bosch Smart Home Controller (SHC) before 9.8.905 that may result in reading or modification of the SHC's configuration or triggering and restoring backups. low complexity bosch | 8.0 |
| 2019-05-29 | CVE-2019-11891 | Improper Privilege Management vulnerability in Bosch Smart Home Controller Firmware A potential incorrect privilege assignment vulnerability exists in the app pairing mechanism of the Bosch Smart Home Controller (SHC) before 9.8.905 that may result in elevated privileges of the adversary's choosing. | 8.0 |
| 2019-05-29 | CVE-2019-6958 | Missing Authentication for Critical Function vulnerability in Bosch products A recently discovered security vulnerability affects all Bosch Video Management System (BVMS) versions 9.0 and below, DIVAR IP 2000, 3000, 5000 and 7000, Configuration Manager, Building Integration System (BIS) with Video Engine, Access Professional Edition (APE), Access Easy Controller (AEC), Bosch Video Client (BVC) and Video SDK (VSDK). | 9.1 |
| 2019-05-29 | CVE-2019-6957 | Out-of-bounds Write vulnerability in Bosch products A recently discovered security vulnerability affects all Bosch Video Management System (BVMS) versions 9.0 and below, DIVAR IP 2000, 3000, 5000 and 7000, Video Recording Manager (VRM), Video Streaming Gateway (VSG), Configuration Manager, Building Integration System (BIS) with Video Engine, Access Professional Edition (APE), Access Easy Controller (AEC), Bosch Video Client (BVC) and Video SDK (VSDK). | 9.8 |
| 2019-05-13 | CVE-2019-8952 | Path Traversal vulnerability in Bosch products A Path Traversal vulnerability located in the webserver affects several Bosch hardware and software products. | 6.5 |
| 2019-05-13 | CVE-2019-8951 | Open Redirect vulnerability in Bosch products An Open Redirect vulnerability located in the webserver affects several Bosch hardware and software products. | 6.1 |
| 2019-02-22 | CVE-2019-7729 | Incorrect Permission Assignment for Critical Resource vulnerability in Bosch Smart Camera An issue was discovered in the Bosch Smart Camera App before 1.3.1 for Android. | 3.3 |
| 2019-02-22 | CVE-2019-7728 | Improper Certificate Validation vulnerability in Bosch Smart Camera An issue was discovered in the Bosch Smart Camera App before 1.3.1 for Android. | 7.5 |