Vulnerabilities > Bosch > Video Management System Viewer > 9.0

DATE	CVE	VULNERABILITY TITLE	RISK
2023-12-18	CVE-2023-35867	Unspecified vulnerability in Bosch products An improper handling of a malformed API answer packets to API clients in Bosch BT software products can allow an unauthenticated attacker to cause a Denial of Service (DoS) situation. network high complexity bosch	5.9
2023-06-15	CVE-2023-28175	Incorrect Authorization vulnerability in Bosch products Improper Authorization in SSH server in Bosch VMS 11.0, 11.1.0, and 11.1.1 allows a remote authenticated user to access resources within the trusted internal network via a port forwarding request. network low complexity bosch CWE-863	7.7
2020-02-07	CVE-2020-6768	Path Traversal vulnerability in Bosch products A path traversal vulnerability in the Bosch Video Management System (BVMS) NoTouch deployment allows an unauthenticated remote attacker to read arbitrary files from the Central Server. network low complexity bosch CWE-22	7.5
2020-02-06	CVE-2020-6767	Path Traversal vulnerability in Bosch products A path traversal vulnerability in the Bosch Video Management System (BVMS) FileTransferService allows an authenticated remote attacker to read arbitrary files from the Central Server. network low complexity bosch CWE-22	6.5

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.