2 matches found
CVE-2019-11893
The CVE-2019-11893 entry describes an incorrect privilege assignment vulnerability in the Bosch Smart Home Controller (SHC) app permission update API. Affected product: Bosch SHC prior to version 9.8.905. Vulnerable component: the app permission update API where privilege assignments can be misap...
CVE-2019-11893 Incorrect privilege assignment in the app permission update API of the Bosch Smart Home Controller (SHC)
A potential incorrect privilege assignment vulnerability exists in the app permission update API of the Bosch Smart Home Controller SHC before 9.8.905 that may result in a restricted app obtaining default app permissions. In order to exploit the vulnerability, the adversary needs to have...