Vulnerabilidades en Bosch
70 resultadosCVE-2021-23845HIGHB426 Web Configuration Authentication BypassEPSS 0.8%CVE-2021-23852MEDIUMDenial of Service (DoS) due to invalid web parameterEPSS 0.8%CVE-2022-36301CRITICALBF-OS version 3.x up to and including 3.83 do not enforce strong passwords which may allow a remote attacker to brute-force the device passwEPSS 0.8%CVE-2021-23861MEDIUMPossible Access to Debug Functions in Bosch VRM / BVMSEPSS 0.8%CVE-2023-32230HIGHAn improper handling of a malformed API request to an API server in Bosch BT software products can allow an unauthenticated attacker to causEPSS 0.7%CVE-2022-32535MEDIUMWeb server runs as rootEPSS 0.7%CVE-2019-11896MEDIUMIncorrect pviilege assignment in the 3rd party pairing mechanism of the Bosch Smart Home Controller (SHC)EPSS 0.7%CVE-2020-6777MEDIUMStored XSS in Bosch PRAESIDEO and Bosch PRAESENSA Management InterfaceEPSS 0.6%CVE-2023-32229MEDIUMDue to an error in the software interface to the secure element chip on Bosch IP cameras of family CPP13 and CPP14, the chip can be permanenEPSS 0.6%CVE-2020-6780MEDIUMPassword Hash With Insufficient Computational Effort in the Database of Bosch FSM-2500 Server and Bosch FSM-5000 ServerEPSS 0.6%CVE-2023-35867MEDIUMAn improper handling of a malformed API answer packets to API clients in Bosch BT software products can allow an unauthenticated attacker toEPSS 0.6%CVE-2021-23848HIGHReflected XSS in URL handlerEPSS 0.6%CVE-2021-23854HIGHReflected XSS in page parameterEPSS 0.6%CVE-2020-6776HIGHCSRF in Bosch PRAESIDEO and Bosch PRAESENSA Management InterfaceEPSS 0.5%CVE-2021-23846HIGHB426 Credential DisclosureEPSS 0.5%CVE-2019-11891HIGHIncorrect privilege assignment in the app pairing mechanism of the Bosch Smart Home Controller (SHC)EPSS 0.5%CVE-2022-36302HIGHFile path manipulation vulnerability in BF-OS version 3.00 up to and including 3.83 allows an attacker to modify the file path to access difEPSS 0.5%CVE-2019-11894MEDIUMImproper access control in the backup mechanism of the Bosch Smart Home Controller (SHC)EPSS 0.5%CVE-2022-41677MEDIUMAn information disclosure vulnerability was discovered in Bosch IP camera devices allowing an unauthenticated attacker to retrieve informatiEPSS 0.5%CVE-2021-23860MEDIUMReflected Cross Site Scripting (XSS) vulnerability in Bosch VRM / BVMSEPSS 0.5%