Lucene search
K
BoschAccess Professional Edition

5 matches found

CVE
CVE
added 2019/05/29 6:47 p.m.155 views

CVE-2019-6958

The CVE-2019-6958 entry concerns Bosch BVMS and related systems (BVMS v9.0 and earlier; DIVAR IP 2000–7000; Configuration Manager; BIS with Video Engine; APE; AEC; BVC; VSDK). The root cause is improper access control via the RCP+ network port allowing access without authentication. This could en...

9.8CVSS9.2AI score0.01515EPSS
CVE
CVE
added 2019/05/29 6:55 p.m.154 views

CVE-2019-6957

CVE-2019-6957 affects Bosch products including BVMS ≤ v9.0, DIVAR IP 2000–7000, VRM, VSG, Configuration Manager, BIS with Video Engine, APE, AEC, BV C, and VSDK. The issue is described as a buffer overflow vulnerability that potentially allows unauthorized code execution over the network interfac...

9.8CVSS9.6AI score0.01988EPSS
CVE
CVE
added 2022/01/19 8:38 p.m.76 views

CVE-2021-23843

The CVE-2021-23843 affects Bosch AMC2 devices via AccessIPConfig.exe and AmcIpConfig.exe, where password protection on the device configuration can be bypassed, allowing unauthorized changes to configuration data and potentially making the device unresponsive on the local network. The vulnerabili...

8.8CVSS7.8AI score0.00241EPSS
CVE
CVE
added 2022/01/19 8:38 p.m.72 views

CVE-2021-23842

The CVE-2021-23842 entry concerns Bosch AMC2, where an attacker who can access the local network can retrieve the encryption key from the firmware. This enables decryption and modification of network traffic between the AMC2 and the host system, as well as decrypted access to firmware files and p...

7.1CVSS6AI score0.00144EPSS
CVE
CVE
added 2021/12/08 9:17 p.m.67 views

CVE-2021-23859

CVE-2021-23859 affects Bosch VRM and BVMS with VRM installations. An unauthenticated attacker can send a crafted HTTP request that crashes the targeted service, and in standalone VRM or BVMS configurations this crash may allow sending further unauthenticated commands to the service. Some products...

9.1CVSS7.8AI score0.00972EPSS