Vulnerabilities > Bosch
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-05-29 | CVE-2019-11892 | Improper Access Control vulnerability in Bosch Smart Home Controller Firmware A potential improper access control vulnerability exists in the JSON-RPC interface of the Bosch Smart Home Controller (SHC) before 9.8.905 that may result in reading or modification of the SHC's configuration or triggering and restoring backups. | 6.8 |
| 2019-05-29 | CVE-2019-11891 | Permissions, Privileges, and Access Controls vulnerability in Bosch Smart Home Controller Firmware A potential incorrect privilege assignment vulnerability exists in the app pairing mechanism of the Bosch Smart Home Controller (SHC) before 9.8.905 that may result in elevated privileges of the adversary's choosing. | 5.4 |
| 2019-05-29 | CVE-2019-6958 | Missing Authentication for Critical Function vulnerability in Bosch products A recently discovered security vulnerability affects all Bosch Video Management System (BVMS) versions 9.0 and below, DIVAR IP 2000, 3000, 5000 and 7000, Configuration Manager, Building Integration System (BIS) with Video Engine, Access Professional Edition (APE), Access Easy Controller (AEC), Bosch Video Client (BVC) and Video SDK (VSDK). | 9.1 |
| 2019-05-29 | CVE-2019-6957 | Out-of-bounds Write vulnerability in Bosch products A recently discovered security vulnerability affects all Bosch Video Management System (BVMS) versions 9.0 and below, DIVAR IP 2000, 3000, 5000 and 7000, Video Recording Manager (VRM), Video Streaming Gateway (VSG), Configuration Manager, Building Integration System (BIS) with Video Engine, Access Professional Edition (APE), Access Easy Controller (AEC), Bosch Video Client (BVC) and Video SDK (VSDK). | 9.8 |
| 2019-05-13 | CVE-2019-8952 | Path Traversal vulnerability in Bosch products A Path Traversal vulnerability located in the webserver affects several Bosch hardware and software products. | 4.0 |
| 2019-05-13 | CVE-2019-8951 | Open Redirect vulnerability in Bosch products An Open Redirect vulnerability located in the webserver affects several Bosch hardware and software products. | 5.8 |
| 2019-02-22 | CVE-2019-7729 | Incorrect Permission Assignment for Critical Resource vulnerability in Bosch Smart Camera An issue was discovered in the Bosch Smart Camera App before 1.3.1 for Android. | 2.1 |
| 2019-02-22 | CVE-2019-7728 | Improper Certificate Validation vulnerability in Bosch Smart Camera An issue was discovered in the Bosch Smart Camera App before 1.3.1 for Android. | 5.1 |
| 2018-12-19 | CVE-2018-20299 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Bosch products An issue was discovered in several Bosch Smart Home cameras (360 degree indoor camera and Eyes outdoor camera) with firmware before 6.52.4. | 7.5 |
| 2018-12-17 | CVE-2018-19036 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Bosch products An issue was discovered in several Bosch IP cameras for firmware versions 6.32 and higher. | 10.0 |