Vulnerabilities > Bosch > Video Streaming Gateway > Critical

DATE CVE VULNERABILITY TITLE RISK
2020-02-07 CVE-2020-6769 Missing Authentication for Critical Function vulnerability in Bosch products
Missing Authentication for Critical Function in the Bosch Video Streaming Gateway (VSG) allows an unauthenticated remote attacker to retrieve and set arbitrary configuration data of the Video Streaming Gateway.
network
low complexity
bosch CWE-306
critical
9.1
2019-05-29 CVE-2019-6957 Out-of-bounds Write vulnerability in Bosch products
A recently discovered security vulnerability affects all Bosch Video Management System (BVMS) versions 9.0 and below, DIVAR IP 2000, 3000, 5000 and 7000, Video Recording Manager (VRM), Video Streaming Gateway (VSG), Configuration Manager, Building Integration System (BIS) with Video Engine, Access Professional Edition (APE), Access Easy Controller (AEC), Bosch Video Client (BVC) and Video SDK (VSDK).
network
low complexity
bosch CWE-787
critical
9.8