Vulnerabilities > Bosch > Video Recording Manager > Medium
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2021-12-08 | CVE-2021-23859 | Improper Handling of Exceptional Conditions vulnerability in Bosch products An unauthenticated attacker is able to send a special HTTP request, that causes a service to crash. | 5.0 |
2021-12-08 | CVE-2021-23860 | Cross-site Scripting vulnerability in Bosch products An error in a page handler of the VRM may lead to a reflected cross site scripting (XSS) in the web-based interface. | 4.3 |
2021-12-08 | CVE-2021-23861 | Unspecified vulnerability in Bosch products By executing a special command, an user with administrative rights can get access to extended debug functionality on the VRM allowing an impact on integrity or availability of the installed software. | 5.5 |
2021-03-25 | CVE-2020-6786 | Uncontrolled Search Path Element vulnerability in Bosch Video Recording Manager Loading a DLL through an Uncontrolled Search Path Element in the Bosch Video Recording Manager installer up to and including version 3.82.0055 for 3.82, up to and including version 3.81.0064 for 3.81 and 3.71 and older potentially allows an attacker to execute arbitrary code on a victim's system. | 6.9 |
2019-05-13 | CVE-2019-8952 | Path Traversal vulnerability in Bosch products A Path Traversal vulnerability located in the webserver affects several Bosch hardware and software products. | 4.0 |
2019-05-13 | CVE-2019-8951 | Open Redirect vulnerability in Bosch products An Open Redirect vulnerability located in the webserver affects several Bosch hardware and software products. | 5.8 |