Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Divar_ip_7000_r2_firmware
(Bosch)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 2 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2023-12-18 | CVE-2023-35867 | An improper handling of a malformed API answer packets to API clients in Bosch BT software products can allow an unauthenticated attacker to cause a Denial of Service (DoS) situation. To exploit this vulnerability an attacker has to replace an existing API server e.g. through Man-in-the-Middle attacks. | _onvif_camera_event_driver_tool, Bosch_video_management_system, Building_integration_system_video_engine, Configuration_manager, Divar_ip_7000_r2_firmware, Divar_ip_all\-In\-One_4000_firmware, Divar_ip_all\-In\-One_5000_firmware, Divar_ip_all\-In\-One_6000_firmware, Divar_ip_all\-In\-One_7000_firmware, Divar_ip_all\-In\-One_7000_r3_firmware, Intelligent_insights, Project_assistant, Video_management_system_viewer, Video_security_client | 5.9 | ||
| 2023-06-15 | CVE-2023-28175 | Improper Authorization in SSH server in Bosch VMS 11.0, 11.1.0, and 11.1.1 allows a remote authenticated user to access resources within the trusted internal network via a port forwarding request. | Divar_ip_3000_firmware, Divar_ip_4000_firmware, Divar_ip_5000_firmware, Divar_ip_6000_firmware, Divar_ip_7000_firmware, Divar_ip_7000_r2_firmware, Divar_ip_7000_r3_firmware, Video_management_system, Video_management_system_viewer | 7.7 |