Vulnerabilities > Bosch > Video Streaming Gateway

DATE CVE VULNERABILITY TITLE RISK
2023-12-18 CVE-2023-32230 Unspecified vulnerability in Bosch products
An improper handling of a malformed API request to an API server in Bosch BT software products can allow an unauthenticated attacker to cause a Denial of Service (DoS) situation.
network
low complexity
bosch
7.5
2021-03-25 CVE-2020-6790 Uncontrolled Search Path Element vulnerability in Bosch Video Streaming Gateway
Calling an executable through an Uncontrolled Search Path Element in the Bosch Video Streaming Gateway installer up to and including version 6.45.10 potentially allows an attacker to execute arbitrary code on a victim's system.
local
low complexity
bosch CWE-427
7.8
2020-02-07 CVE-2020-6769 Missing Authentication for Critical Function vulnerability in Bosch products
Missing Authentication for Critical Function in the Bosch Video Streaming Gateway (VSG) allows an unauthenticated remote attacker to retrieve and set arbitrary configuration data of the Video Streaming Gateway.
network
low complexity
bosch CWE-306
critical
9.1
2019-05-29 CVE-2019-6957 Out-of-bounds Write vulnerability in Bosch products
A recently discovered security vulnerability affects all Bosch Video Management System (BVMS) versions 9.0 and below, DIVAR IP 2000, 3000, 5000 and 7000, Video Recording Manager (VRM), Video Streaming Gateway (VSG), Configuration Manager, Building Integration System (BIS) with Video Engine, Access Professional Edition (APE), Access Easy Controller (AEC), Bosch Video Client (BVC) and Video SDK (VSDK).
network
low complexity
bosch CWE-787
critical
9.8