43 matches found
Bosch Security Systems IP Cameras Improper Input Validation (CVE-2023-39509)
A command injection vulnerability exists in Bosch IP cameras that allows an authenticated user with administrative rights to run arbitrary commands on the OS of the camera. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information...
Bosch Security Systems IP Cameras Improper Access Control (CVE-2022-41677)
An information disclosure vulnerability was discovered in Bosch IP camera devices allowing an unauthenticated attacker to retrieve information like capabilities about the device itself and network settings of the device, disclosing possibly internal network settings if the device is connected to...
Bosch Security Systems IP Cameras Improper Input Validation (CVE-2021-23853)
In Bosch IP cameras, improper validation of the HTTP header allows an attacker to inject arbitrary HTTP headers through crafted URLs. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc...
Bosch Security Systems IP Cameras Cross-site Scripting (CVE-2021-23848)
An error in the URL handler Bosch IP cameras may lead to a reflected cross site scripting XSS in the web-based interface. An attacker with knowledge of the camera address can send a crafted link to a user, which will execute javascript code in the context of the user. This plugin only works with...
Bosch Security Systems IP Cameras Cross-Site Request Forgery (CVE-2021-23849)
A vulnerability in the web-based interface allows an unauthenticated remote attacker to trigger actions on an affected system on behalf of another user CSRF - Cross Site Request Forgery. This requires the victim to be tricked into clicking a malicious link or opening a malicious website while bei...
Bosch Security Systems IP Cameras Reflected Cross-site Scripting (CVE-2021-23854)
An error in the handling of a page parameter in Bosch IP cameras may lead to a reflected cross site scripting XSS in the web-based interface. This issue only affects versions 7.7x and 7.6x. All other versions are not affected. This plugin only works with Tenable.ot. Please visit...
Bosch Security Systems IP Cameras Remote Code Execution (CVE-2018-19036)
An issue was discovered in several Bosch IP cameras running firmware 6.32 and higher. A malicious client could potentially succeed in the unauthorized execution of code on the device via the network interface. This plugin only works with Tenable.ot. Please visit...
Bosch Security Systems IP Cameras Uncontrolled Resource Consumption (CVE-2021-23852)
An authenticated attacker with administrator rights Bosch IP cameras can call an URL with an invalid parameter that causes the camera to become unresponsive for a few seconds and cause a Denial of Service DoS. This plugin only works with Tenable.ot. Please visit...
EUVD-2021-10780
Malware in sbrugna...
EUVD-2021-10778
Malware in sbrugna...
EUVD-2021-10774
Malware in sbrugna...
EUVD-2021-10779
Malware in sbrugna...
EUVD-2018-10754
Malware in sbrugna...
EUVD-2023-36487
Malicious code in bioql PyPI...
EUVD-2023-43231
Malicious code in bioql PyPI...
CVE-2023-39509
A command injection vulnerability exists in Bosch IP cameras that allows an authenticated user with administrative rights to run arbitrary commands on the OS of the camera...
CVE-2023-32229
Due to an error in the software interface to the secure element chip on Bosch IP cameras of family CPP13 and CPP14, the chip can be permanently damaged when enabling the Stream security option signing of the video stream with option MD5, SHA-1 or SHA-256...
PT-2023-14011 · Bosch · Bosch Ip Cameras
Name of the Vulnerable Software and Affected Versions: Bosch IP camera devices affected versions not specified Description: An information disclosure issue was found in Bosch IP camera devices, allowing an unauthenticated attacker to retrieve device information, such as capabilities, and network...
CVE-2023-32229
Due to an error in the software interface to the secure element chip on Bosch IP cameras of family CPP13 and CPP14, the chip can be permanently damaged when enabling the Stream security option signing of the video stream with option MD5, SHA-1 or SHA-256...
Design/Logic Flaw
Due to an error in the software interface to the secure element chip on Bosch IP cameras of family CPP13 and CPP14, the chip can be permanently damaged when enabling the Stream security option signing of the video stream with option MD5, SHA-1 or SHA-256...