Vulnerabilities > Bosch > Video Management System Viewer

DATE CVE VULNERABILITY TITLE RISK
2023-12-18 CVE-2023-35867 Unspecified vulnerability in Bosch products
An improper handling of a malformed API answer packets to API clients in Bosch BT software products can allow an unauthenticated attacker to cause a Denial of Service (DoS) situation.
network
high complexity
bosch
5.9
2023-06-15 CVE-2023-28175 Incorrect Authorization vulnerability in Bosch products
Improper Authorization in SSH server in Bosch VMS 11.0, 11.1.0, and 11.1.1 allows a remote authenticated user to access resources within the trusted internal network via a port forwarding request.
network
low complexity
bosch CWE-863
7.7
2021-03-25 CVE-2020-6785 Uncontrolled Search Path Element vulnerability in Bosch products
Loading a DLL through an Uncontrolled Search Path Element in Bosch BVMS and BVMS Viewer in versions 10.1.0, 10.0.1, 10.0.0 and 9.0.0 and older potentially allows an attacker to execute arbitrary code on a victim's system.
local
low complexity
bosch CWE-427
7.8
2020-02-07 CVE-2020-6768 Path Traversal vulnerability in Bosch products
A path traversal vulnerability in the Bosch Video Management System (BVMS) NoTouch deployment allows an unauthenticated remote attacker to read arbitrary files from the Central Server.
network
low complexity
bosch CWE-22
7.5
2020-02-06 CVE-2020-6767 Path Traversal vulnerability in Bosch products
A path traversal vulnerability in the Bosch Video Management System (BVMS) FileTransferService allows an authenticated remote attacker to read arbitrary files from the Central Server.
network
low complexity
bosch CWE-22
6.5