Lucene search
BoschCVELIST:CVE-2021-23853HistoryJun 09, 2021 - 2:19 p.m.
CVE-2021-23853 Improper Input Validation of HTTP Headers
2021-06-0914:19:24
CWE-20
bosch
www.cve.org
3
cve-2021-23853
bosch ip cameras
http header
input validation
security vulnerability
CVSS3
8.3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H
AI Score
9.6
Confidence
High
EPSS
0.002
Percentile
60.7%
In Bosch IP cameras, improper validation of the HTTP header allows an attacker to inject arbitrary HTTP headers through crafted URLs.
CNA Affected
[
{
"platforms": [
"CPP4, CPP6, CPP7, CPP7.3, CPP13"
],
"product": "CPP Firmware",
"vendor": "Bosch",
"versions": [
{
"status": "affected",
"version": "all"
}
]
}
]Related
cve
cve
CVE-2021-23853
2021-06-09 15:15:08
prion
prion
Input validation
2021-06-09 15:15:00
cnvd
cnvd
Bosch IP cameras input validation error vulnerability
2021-06-11 00:00:00
nvd
nvd
CVE-2021-23853
2021-06-09 15:15:08
CVSS3
8.3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H
AI Score
9.6
Confidence
High
EPSS
0.002
Percentile
60.7%
Related for CVELIST:CVE-2021-23853