Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
bosch access vulnerabilities and exploits
(subscribe to this query)
9
CVSSv2
CVE-2022-32536
The user access rights validation in the web server of the Bosch Ethernet switch PRA-ES8P2S with software version 1.01.05 was insufficient. This would allow a non-administrator user to obtain administrator user access rights.
Bosch Pra-es8p2s Firmware
NA
CVE-2022-47648
An Improper Access Control vulnerability allows an malicious user to access the control panel of the B420 without requiring any sort of authorization or authentication due to the IP based authorization. If an authorized user has accessed a publicly available B420 product using va...
Bosch B420 Firmware 02.02.0001
10
CVSSv2
CVE-2022-32535
The Bosch Ethernet switch PRA-ES8P2S with software version 1.01.05 runs its web server with root privilege. In combination with CVE-2022-23534 this could give an attacker root access to the switch.
Bosch Pra-es8p2s Firmware
NA
CVE-2023-29241
Improper Information in Cybersecurity Guidebook in Bosch Building Integration System (BIS) 5.0 may lead to wrong configuration which allows local users to access data via network
Bosch Building Integration System 5.0
5.4
CVSSv2
CVE-2019-11891
A potential incorrect privilege assignment vulnerability exists in the app pairing mechanism of the Bosch Smart Home Controller (SHC) prior to 9.8.905 that may result in elevated privileges of the adversary's choosing. In order to exploit the vulnerability, the adversary nee...
Bosch Smart Home Controller Firmware
2.9
CVSSv2
CVE-2019-11894
A potential improper access control vulnerability exists in the backup mechanism of the Bosch Smart Home Controller (SHC) prior to 9.8.905 that may result in unauthorized download of a backup. In order to exploit the vulnerability, the adversary needs to download the backup direc...
Bosch Smart Home Controller Firmware
6.8
CVSSv2
CVE-2019-11892
A potential improper access control vulnerability exists in the JSON-RPC interface of the Bosch Smart Home Controller (SHC) prior to 9.8.905 that may result in reading or modification of the SHC's configuration or triggering and restoring backups. In order to exploit the vul...
Bosch Smart Home Controller Firmware
7.1
CVSSv2
CVE-2019-11895
A potential improper access control vulnerability exists in the JSON-RPC interface of the Bosch Smart Home Controller (SHC) prior to 9.8.905 that may result in a successful denial of service of the SHC and connected sensors and actuators. In order to exploit the vulnerability, th...
Bosch Smart Home Controller Firmware
NA
CVE-2024-25002
Command Injection in the diagnostics interface of the Bosch Network Synchronizer allows unauthorized users full access to the device.
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3