Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
bosch nexo-os vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2023-48251
The vulnerability allows a remote malicious user to authenticate to the SSH service with root privileges through a hidden hard-coded account.
Bosch Nexo-os
9.8
CVSSv3
CVE-2023-48262
The vulnerability allows an unauthenticated remote malicious user to perform a Denial-of-Service (DoS) attack or, possibly, obtain Remote Code Execution (RCE) via a crafted network request.
Bosch Nexo-os
9.8
CVSSv3
CVE-2023-48263
The vulnerability allows an unauthenticated remote malicious user to perform a Denial-of-Service (DoS) attack or, possibly, obtain Remote Code Execution (RCE) via a crafted network request.
Bosch Nexo-os
9.8
CVSSv3
CVE-2023-48264
The vulnerability allows an unauthenticated remote malicious user to perform a Denial-of-Service (DoS) attack or, possibly, obtain Remote Code Execution (RCE) via a crafted network request.
Bosch Nexo-os
9.8
CVSSv3
CVE-2023-48265
The vulnerability allows an unauthenticated remote malicious user to perform a Denial-of-Service (DoS) attack or, possibly, obtain Remote Code Execution (RCE) via a crafted network request.
Bosch Nexo-os
9.8
CVSSv3
CVE-2023-48266
The vulnerability allows an unauthenticated remote malicious user to perform a Denial-of-Service (DoS) attack or, possibly, obtain Remote Code Execution (RCE) via a crafted network request.
Bosch Nexo-os
9.8
CVSSv3
CVE-2023-48245
The vulnerability allows an unauthenticated remote malicious user to upload arbitrary files under the context of the application OS user (“root”) via a crafted HTTP request.
Bosch Nexo-os
9.8
CVSSv3
CVE-2023-48250
The vulnerability allows a remote malicious user to authenticate to the web application with high privileges through multiple hidden hard-coded accounts.
Bosch Nexo-os
8.8
CVSSv3
CVE-2023-48252
The vulnerability allows an authenticated remote malicious user to perform actions exceeding their authorized access via crafted HTTP requests.
Bosch Nexo-os
8.8
CVSSv3
CVE-2023-48253
The vulnerability allows a remote authenticated malicious user to read or update arbitrary content of the authentication database via a crafted HTTP request. By abusing this vulnerability it is possible to exfiltrate other users’ password hashes or update them with arbitrar...
Bosch Nexo-os
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-30078
CVE-2024-37896
code injection
CVE-2024-3080
CVE-2024-5172
cross-site request forgery
CVE-2024-6111
firmware
CVE-2024-38504
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »