Vulnerabilities > Bosch > Video Recording Manager > Medium

DATE CVE VULNERABILITY TITLE RISK
2021-12-08 CVE-2021-23859 Improper Handling of Exceptional Conditions vulnerability in Bosch products
An unauthenticated attacker is able to send a special HTTP request, that causes a service to crash.
network
low complexity
bosch CWE-755
5.0
2021-12-08 CVE-2021-23860 Cross-site Scripting vulnerability in Bosch products
An error in a page handler of the VRM may lead to a reflected cross site scripting (XSS) in the web-based interface.
network
bosch CWE-79
4.3
2021-12-08 CVE-2021-23861 Unspecified vulnerability in Bosch products
By executing a special command, an user with administrative rights can get access to extended debug functionality on the VRM allowing an impact on integrity or availability of the installed software.
network
low complexity
bosch
5.5
2021-03-25 CVE-2020-6786 Uncontrolled Search Path Element vulnerability in Bosch Video Recording Manager
Loading a DLL through an Uncontrolled Search Path Element in the Bosch Video Recording Manager installer up to and including version 3.82.0055 for 3.82, up to and including version 3.81.0064 for 3.81 and 3.71 and older potentially allows an attacker to execute arbitrary code on a victim's system.
local
bosch CWE-427
6.9
2019-05-13 CVE-2019-8952 Path Traversal vulnerability in Bosch products
A Path Traversal vulnerability located in the webserver affects several Bosch hardware and software products.
network
low complexity
bosch CWE-22
4.0
2019-05-13 CVE-2019-8951 Open Redirect vulnerability in Bosch products
An Open Redirect vulnerability located in the webserver affects several Bosch hardware and software products.
network
bosch CWE-601
5.8