Published: 30/03/2022 Updated: 08/04/2022

CVSS v2 Base Score: 6.5 | Impact Score: 6.4 | Exploitability Score: 8

CVSS v3 Base Score: 7.2 | Impact Score: 5.9 | Exploitability Score: 1.2

VMScore: 578

Vector: AV:N/AC:L/Au:S/C:P/I:P/A:P

A specially crafted TCP/IP packet may cause the camera recovery image web interface to crash. It may also cause a buffer overflow which could enable remote code execution. The recovery image can only be booted with administrative rights or with physical access to the camera and allows the upload of a new firmware in case of a damaged firmware.

Vulnerable Product	Search on Vulmon	Subscribe to Product
bosch autodome_ip_4000i_firmware cpp7.3
bosch autodome_ip_5000i_firmware cpp7.3
bosch autodome_ip_starlight_5000i_firmware cpp7.3
bosch autodome_ip_starlight_7000i_firmware cpp7.3
bosch dinion_ip_3000i_firmware cpp7.3
bosch dinion_ip_bullet_4000i_firmware cpp7.3
bosch dinion_ip_bullet_5000_firmware cpp7.3
bosch dinion_ip_bullet_5000i_firmware cpp7.3
bosch dinion_ip_bullet_6000i_firmware cpp7.3
bosch flexidome_ip_3000i_firmware cpp7.3
bosch flexidome_ip_4000i_firmware cpp7.3
bosch flexidome_ip_5000i_firmware cpp7.3
bosch flexidome_ip_starlight_5000i_firmware cpp7.3
bosch flexidome_ip_starlight_8000i_firmware cpp7.3
bosch mic_ip_starlight_7000i_firmware cpp7.3
bosch mic_ip_starlight_7100i_firmware cpp7.3
bosch mic_ip_ultra_7100i_firmware cpp7.3
bosch mic_ip_fusion_9000i_firmware cpp7.3
bosch dinion_ip_starlight_6000_firmware cpp7
bosch dinion_ip_starlight_7000_firmware cpp7
bosch dinion_ip_thermal_8000_firmware cpp7
bosch flexidome_ip_starlight_6000_firmware cpp7
bosch flexidome_ip_starlight_7000_firmware cpp7
bosch dinion_ip_thermal_9000_rm_firmware cpp7
bosch aviotec_ip_starlight_8000_firmware cpp6
bosch dinion_ip_starlight_8000_firmware cpp6
bosch dinion_ip_ultra_8000_firmware cpp6
bosch flexidome_ip_panoramic_6000_firmware cpp6
bosch flexidome_ip_panoramic_7000_firmware cpp6
bosch autodome_ip_4000_hd_firmware cpp4
bosch autodome_ip_5000_hd_firmware cpp4
bosch autodome_ip_5000_ir_firmware cpp4
bosch autodome_7000_firmware cpp4
bosch dinion_hd_1080p_firmware cpp4
bosch dinion_hd_1080p_hdr_firmware cpp4
bosch dinion_hd_720p_firmware cpp4
bosch dinion_imager_9000_hd_firmware cpp4
bosch dinion_ip_bullet_4000_firmware cpp4
bosch dinion_ip_bullet_5000_firmware cpp4
bosch dinion_ip_4000_hd_firmware cpp4
bosch dinion_ip_5000_hd_firmware cpp4
bosch dinion_ip_5000_mp_firmware cpp4
bosch dinion_ip_starlight_7000_hd_firmware cpp4
bosch flexidome_corner_9000_mp_firmware cpp4
bosch flexidome_hd_1080p_firmware cpp4
bosch flexidome_hd_1080p_hdr_firmware cpp4
bosch flexidome_hd_720p_firmware cpp4
bosch vandal-proof_flexidome_hd_1080p_firmware cpp4
bosch vandal-proof_flexidome_hd_1080p_hdr_firmware cpp4
bosch vandal-proof_flexidome_hd_720p_firmware cpp4
bosch flexidome_ip_micro_2000_hd_firmware cpp4
bosch flexidome_ip_micro_2000_ip_firmware cpp4
bosch flexidome_ip_indoor_4000_hd_firmware cpp4
bosch flexidome_ip_indoor_4000_ir_firmware cpp4
bosch flexidome_ip_outdoor_4000_hd_firmware cpp4
bosch flexidome_ip_outdoor_4000_ir_firmware cpp4
bosch flexidome_ip_indoor_5000_hd_firmware cpp4
bosch flexidome_ip_indoor_5000_mp_firmware cpp4
bosch flexidome_ip_micro_5000_mp_firmware cpp4
bosch flexidome_ip_outdoor_5000_hd_firmware cpp4
bosch flexidome_ip_outdoor_5000_mp_firmware cpp4
bosch flexidome_ip_panoramic_5000_firmware cpp4
bosch ip_bullet_4000_hd_firmware cpp4
bosch ip_bullet_5000_hd_firmware cpp4
bosch ip_micro_2000_firmware cpp4
bosch ip_micro_2000_hd_firmware cpp4
bosch mic_ip_dynamic_7000_firmware cpp4
bosch mic_ip_starlight_7000_firmware cpp4
bosch tinyon_ip_2000_firmware cpp4

CWE-120 https://psirt.bosch.com/security-advisories/bosch-sa-478243-bt.html https://psirt.bosch.com/security-advisories/bosch-sa-446276-bt.html https://nvd.nist.gov

CVE-2021-23851

Vulnerability Summary

Vulnerability Trend

References

Vulmon Search

About

Products

Connect