Vulnerabilities > Bosch > Rexroth Indramotion XLC Firmware

DATE CVE VULNERABILITY TITLE RISK
2021-10-04 CVE-2021-23855 Inadequate Encryption Strength vulnerability in Bosch products
The user and password data base is exposed by an unprotected web server resource.
network
low complexity
bosch CWE-326
5.0
2021-10-04 CVE-2021-23857 Improper Authentication vulnerability in Bosch products
Login with hash: The login routine allows the client to log in to the system not by using the password, but by using the hash of the password.
network
low complexity
bosch CWE-287
critical
10.0