Bosch PSIRT Security Advisories
Information about security vulnerabilities affecting Bosch products.
2019
Security Advisory ID | Assigned CVE IDs |
CVSS Score* |
Affected Bosch Products | Title |
Publication Date |
Last Update |
---|---|---|---|---|---|---|
Security Advisory ID |
Assigned CVE IDs
CVE-2019-11899
|
CVSS Score*
8.8
|
Affected Bosch Products
Bosch Access Professional Edition
|
Title
Improper Access Control in Access Professional Edition 3.7 downwards
|
Publication Date
2019-09-11
|
Last Update
2019-09-11
|
Security Advisory ID |
Assigned CVE IDs
CVE-2019-11898
|
CVSS Score*
9.9
|
Affected Bosch Products
Bosch Access Professional Edition
|
Title
Hard-coded Credentials in Access Professional Edition 3.7 downwards
|
Publication Date
2019-09-11
|
Last Update
2019-09-11
|
Security Advisory ID |
Assigned CVE IDs
CVE-2019-1181
CVE-2019-1182 |
CVSS Score*
9.8
|
Affected Bosch Products
|
Title
Vulnerability for Windows Remote Desktop Services (RDP) Remote Code Execution
|
Publication Date
2019-09-03
|
Last Update
2019-09-03
|
Security Advisory ID |
Assigned CVE IDs
CVE-2019-11601 CVE-2019-11897
CVE-2019-11602 CVE-2019-11603 |
CVSS Score*
9.1
|
Affected Bosch Products
|
Title
Multiple Vulnerabilities in ProSyst mBS SDK and Bosch IoT Gateway Software
|
Publication Date
2019-08-19
|
Last Update
2019-08-21
|
Security Advisory ID |
Assigned CVE IDs
CVE-2019-12256
CVE-2019-12257 CVE-2019-12255 CVE-2019-12260 CVE-2019-12261 CVE-2019-12263 CVE-2019-12258 CVE-2019-12259 CVE-2019-12262 CVE-2019-12264 CVE-2019-12265 |
CVSS Score*
9.8
|
Affected Bosch Products
|
Title
VxWorks security updates in Bosch Rexroth controllers
|
Publication Date
2019-08-08
|
Last Update
2019-08-08
|
Security Advisory ID |
Assigned CVE IDs
CVE-2019-0708
|
CVSS Score*
9.8
|
Affected Bosch Products
|
Title
Vulnerability for Windows Remote Desktop Services (RDP) Remote Code Execution
|
Publication Date
2019-06-12
|
Last Update
2019-06-12
|
Security Advisory ID |
Assigned CVE IDs
CVE-2019-11601
CVE-2019-11602 CVE-2019-11603 CVE-2019-11891 CVE-2019-11892 CVE-2019-11893 CVE-2019-11894 CVE-2019-11895 CVE-2019-11896 CVE-2019-11897 |
CVSS Score*
9.1
|
Affected Bosch Products
Bosch Smart Home Controller
|
Title
Multiple Vulnerabilities in Bosch Smart Home Controller
|
Publication Date
2019-05-29
|
Last Update
2019-05-29
|
Security Advisory ID |
Assigned CVE IDs
CVE-2019-11684
|
CVSS Score*
9.9
|
Affected Bosch Products
Bosch Video Recording Manager
|
Title
Unauthenticated Certificate Access in Video Recording Manager
|
Publication Date
2019-05-09
|
Last Update
2019-05-22
|
Security Advisory ID |
Assigned CVE IDs
CVE-2019-6958
|
CVSS Score*
9.8
|
Affected Bosch Products
|
Title
Improper Access Control in Bosch Security Systems Software for Video, PSIM and Access Control Systems
|
Publication Date
2019-04-03
|
Last Update
2019-04-03
|
Security Advisory ID |
Assigned CVE IDs
CVE-2019-6957
|
CVSS Score*
9.8
|
Affected Bosch Products
|
Title
Buffer Overflow in Bosch Security Systems Software for Video, PSIM and Access
|
Publication Date
2019-04-03
|
Last Update
2019-04-03
|
Security Advisory ID |
Assigned CVE IDs
CVE-2019-8952
|
CVSS Score*
4.9
|
Affected Bosch Products
Hardware:
Software:
|
Title
Path Traversal Vulnerability in Video Recording Manager
|
Publication Date
2019-04-03
|
Last Update
2019-04-03
|
Security Advisory ID |
Assigned CVE IDs
CVE-2019-8951
|
CVSS Score*
6.1
|
Affected Bosch Products
Hardware:
Software:
|
Title
Open Redirect Vulnerability in Video Recording Manager
|
Publication Date
2019-04-03
|
Last Update
2019-04-03
|
Security Advisory ID |
Assigned CVE IDs
CVE-2019-7729
|
CVSS Score*
4.8
|
Affected Bosch Products
Smart Camera App for Android < 1.3.1
|
Title
Insecure Permissions in Smart Camera App for Android
|
Publication Date
2019-02-22
|
Last Update
2019-02-22
|
Security Advisory ID |
Assigned CVE IDs
CVE-2019-7728
|
CVSS Score*
8.3
|
Affected Bosch Products
Smart Camera App for Android < 1.3.1
|
Title
Improper Certificate Validation in Smart Camera App for Android
|
Publication Date
2019-02-22
|
Last Update
2019-02-22
|
Security Advisory ID |
Assigned CVE IDs
|
CVSS Score*
9.8
|
Affected Bosch Products
|
Title
Bosch Rexroth IndraWorks Operation (WinStudio) Security Advisory
|
Publication Date
2019-02-18
|
Last Update
2019-02-18
|
Security Advisory ID |
Assigned CVE IDs
|
CVSS Score*
10
|
Affected Bosch Products
Bosch digital recorder DVR 400 & 600 series
|
Title
DIVAR 400 & 600 series Vulnerability
|
Publication Date
2019-01-22
|
Last Update
2019-01-22
|
2018
Security Advisory ID | Assigned CVE IDs |
CVSS Score* |
Affected Bosch Products | Title |
Publication Date |
Last Update |
---|---|---|---|---|---|---|
Security Advisory ID |
Assigned CVE IDs
CVE-2018-20299
|
CVSS Score*
9.4
|
Affected Bosch Products
|
Title
Bosch Smart Home Camera Vulnerability
|
Publication Date
2018-12-18
|
Last Update
2018-12-20
|
Security Advisory ID |
Assigned CVE IDs
CVE-2018-19036
|
CVSS Score*
9.4
|
Affected Bosch Products
|
Title
Bosch IP Camera Vulnerability
|
Publication Date
2018-12-12
|
Last Update
2018-12-12
|
Security Advisory ID |
Assigned CVE IDs
|
CVSS Score*
6.5
|
Affected Bosch Products
|
Title
Bosch Access Easy Controller 2.1
|
Publication Date
2018-12-03
|
Last Update
2018-12-03
|
Security Advisory ID |
Assigned CVE IDs
|
CVSS Score*
9.8
|
Affected Bosch Products
|
Title
Bosch Rexroth IndraWorks Operation (WinStudio) Security Advisory
|
Publication Date
2018-11-27
|
Last Update
2018-11-27
|
2017
Security Advisory ID | Assigned CVE IDs |
CVSS Score* |
Affected Bosch Products | Title |
Publication Date |
Last Update |
---|---|---|---|---|---|---|
Security Advisory ID |
Assigned CVE IDs
|
CVSS Score*
6.5
|
Affected Bosch Products
Bosch Drivelog Connector
|
Title
Bosch Drivelog Connector
|
Publication Date
2017-04-13
|
Last Update
2017-04-13
|
Security Advisory ID |
Assigned CVE IDs
|
CVSS Score*
2.9
|
Affected Bosch Products
Bosch BMA222E
|
Title
Bosch BMA222E Acoustic Resonance Interference
|
Publication Date
2017-03-14
|
Last Update
2017-03-14
|
2016
Security Advisory ID | Assigned CVE IDs |
CVSS Score* |
Affected Bosch Products | Title |
Publication Date |
Last Update |
---|---|---|---|---|---|---|
Security Advisory ID |
Assigned CVE IDs
|
CVSS Score*
6.4
|
Affected Bosch Products
Bosch Rexroth BLADEcontrol-WebVIS
|
Title
Bosch Rexroth BLADEcontrol-WebVIS
|
Publication Date
2016-07-22
|
Last Update
2017-03-14
|
Bosch PSIRT public keys
Search our S/MIME key here
Fingerprint: 87:F1:6F:70:60:D2:94:83:82:AC:69:F5:46:86:7C:80:7F:86:1D:F0
Find our PGP Key here
Fingerprint: ED:47:BD:35:F9:C8:5A:52:3F:08:A7:B8:55:60:42:DB:20:A6:AB:46