Vulnerabilities > Bosch > Video Management System > 3.71.0029

DATE CVE VULNERABILITY TITLE RISK
2021-03-25 CVE-2020-6785 Uncontrolled Search Path Element vulnerability in Bosch products
Loading a DLL through an Uncontrolled Search Path Element in Bosch BVMS and BVMS Viewer in versions 10.1.0, 10.0.1, 10.0.0 and 9.0.0 and older potentially allows an attacker to execute arbitrary code on a victim's system.
local
low complexity
bosch CWE-427
7.8
2021-02-26 CVE-2019-11684 Missing Authentication for Critical Function vulnerability in Bosch products
Improper Access Control in the RCP+ server of the Bosch Video Recording Manager (VRM) component allows arbitrary and unauthenticated access to a limited subset of certificates, stored in the underlying Microsoft Windows operating system.
network
low complexity
bosch CWE-306
critical
9.8
2020-02-07 CVE-2020-6768 Path Traversal vulnerability in Bosch products
A path traversal vulnerability in the Bosch Video Management System (BVMS) NoTouch deployment allows an unauthenticated remote attacker to read arbitrary files from the Central Server.
network
low complexity
bosch CWE-22
7.5
2020-02-06 CVE-2020-6767 Path Traversal vulnerability in Bosch products
A path traversal vulnerability in the Bosch Video Management System (BVMS) FileTransferService allows an authenticated remote attacker to read arbitrary files from the Central Server.
network
low complexity
bosch CWE-22
6.5
2019-05-13 CVE-2019-8952 Path Traversal vulnerability in Bosch products
A Path Traversal vulnerability located in the webserver affects several Bosch hardware and software products.
network
low complexity
bosch CWE-22
6.5
2019-05-13 CVE-2019-8951 Open Redirect vulnerability in Bosch products
An Open Redirect vulnerability located in the webserver affects several Bosch hardware and software products.
network
low complexity
bosch CWE-601
6.1