CVE-2021-23850

EPSS 0.27%
Veröffentlicht 30.03.2022 16:15:08
Zuletzt bearbeitet 21.11.2024 05:51:56
Quelle psirt@bosch.com
CVE-Watchlists
Login
Unerledigt
Login

A specially crafted TCP/IP packet may cause a camera recovery image telnet interface to crash. It may also cause a buffer overflow which could enable remote code execution. The recovery image can only be booted with administrative rights or with physical access to the camera and allows the upload of a new firmware in case of a damaged firmware.

Betroffene Produkte Warnungen 0 Metriken 4 CWE 2 Referenzen 5

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Bosch ≫ Autodome Ip 4000i Firmware Versioncpp7.3

Bosch ≫ Autodome Ip 4000i Version-

Bosch ≫ Autodome Ip 5000i Firmware Versioncpp7.3

Bosch ≫ Autodome Ip 5000i Version-

Bosch ≫ Autodome Ip Starlight 5000i Firmware Versioncpp7.3

Bosch ≫ Autodome Ip Starlight 5000i Version-

Bosch ≫ Autodome Ip Starlight 7000i Firmware Versioncpp7.3

Bosch ≫ Autodome Ip Starlight 7000i Version-

Bosch ≫ Dinion Ip 3000i Firmware Versioncpp7.3

Bosch ≫ Dinion Ip 3000i Version-

Bosch ≫ Dinion Ip Bullet 4000i Firmware Versioncpp7.3

Bosch ≫ Dinion Ip Bullet 4000i Version-

Bosch ≫ Dinion Ip Bullet 5000 Firmware Versioncpp7.3

Bosch ≫ Dinion Ip Bullet 5000 Version-

Bosch ≫ Dinion Ip Bullet 5000i Firmware Versioncpp7.3

Bosch ≫ Dinion Ip Bullet 5000i Version-

Bosch ≫ Dinion Ip Bullet 6000i Firmware Versioncpp7.3

Bosch ≫ Dinion Ip Bullet 6000i Version-

Bosch ≫ Flexidome Ip 3000i Firmware Versioncpp7.3

Bosch ≫ Flexidome Ip 3000i Version-

Bosch ≫ Flexidome Ip 4000i Firmware Versioncpp7.3

Bosch ≫ Flexidome Ip 4000i Version-

Bosch ≫ Flexidome Ip 5000i Firmware Versioncpp7.3

Bosch ≫ Flexidome Ip 5000i Version-

Bosch ≫ Flexidome Ip Starlight 5000i Firmware Versioncpp7.3

Bosch ≫ Flexidome Ip Starlight 5000i Version-

Bosch ≫ Flexidome Ip Starlight 8000i Firmware Versioncpp7.3

Bosch ≫ Flexidome Ip Starlight 8000i Version-

Bosch ≫ Mic Ip Starlight 7000i Firmware Versioncpp7.3

Bosch ≫ Mic Ip Starlight 7000i Version-

Bosch ≫ Mic Ip Starlight 7100i Firmware Versioncpp7.3

Bosch ≫ Mic Ip Starlight 7100i Version-

Bosch ≫ Mic Ip Ultra 7100i Firmware Versioncpp7.3

Bosch ≫ Mic Ip Ultra 7100i Version-

Bosch ≫ Mic Ip Fusion 9000i Firmware Versioncpp7.3

Bosch ≫ Mic Ip Fusion 9000i Version-

Bosch ≫ Dinion Ip Starlight 6000 Firmware Versioncpp7

Bosch ≫ Dinion Ip Starlight 6000 Version-

Bosch ≫ Dinion Ip Starlight 7000 Firmware Versioncpp7

Bosch ≫ Dinion Ip Starlight 7000 Version-

Bosch ≫ Dinion Ip Thermal 8000 Firmware Versioncpp7

Bosch ≫ Dinion Ip Thermal 8000 Version-

Bosch ≫ Flexidome Ip Starlight 6000 Firmware Versioncpp7

Bosch ≫ Flexidome Ip Starlight 6000 Version-

Bosch ≫ Flexidome Ip Starlight 7000 Firmware Versioncpp7

Bosch ≫ Flexidome Ip Starlight 7000 Version-

Bosch ≫ Dinion Ip Thermal 9000 Rm Firmware Versioncpp7

Bosch ≫ Dinion Ip Thermal 9000 Rm Version-

Bosch ≫ Aviotec Ip Starlight 8000 Firmware Versioncpp6

Bosch ≫ Aviotec Ip Starlight 8000 Version-

Bosch ≫ Dinion Ip Starlight 8000 Firmware Versioncpp6

Bosch ≫ Dinion Ip Starlight 8000 Version-

Bosch ≫ Dinion Ip Ultra 8000 Firmware Versioncpp6

Bosch ≫ Dinion Ip Ultra 8000 Version-

Bosch ≫ Flexidome Ip Panoramic 6000 Firmware Versioncpp6

Bosch ≫ Flexidome Ip Panoramic 6000 Version-

Bosch ≫ Flexidome Ip Panoramic 7000 Firmware Versioncpp6

Bosch ≫ Flexidome Ip Panoramic 7000 Version-

Bosch ≫ Autodome Ip 4000 Hd Firmware Versioncpp4

Bosch ≫ Autodome Ip 4000 Hd Version-

Bosch ≫ Autodome Ip 5000 Hd Firmware Versioncpp4

Bosch ≫ Autodome Ip 5000 Hd Version-

Bosch ≫ Autodome Ip 5000 Ir Firmware Versioncpp4

Bosch ≫ Autodome Ip 5000 Ir Version-

Bosch ≫ Autodome 7000 Firmware Versioncpp4

Bosch ≫ Autodome 7000 Version-

Bosch ≫ Dinion Hd 1080p Firmware Versioncpp4

Bosch ≫ Dinion Hd 1080p Version-

Bosch ≫ Dinion Hd 1080p Hdr Firmware Versioncpp4

Bosch ≫ Dinion Hd 1080p Hdr Version-

Bosch ≫ Dinion Hd 720p Firmware Versioncpp4

Bosch ≫ Dinion Hd 720p Version-

Bosch ≫ Dinion Imager 9000 Hd Firmware Versioncpp4

Bosch ≫ Dinion Imager 9000 Hd Version-

Bosch ≫ Dinion Ip Bullet 4000 Firmware Versioncpp4

Bosch ≫ Dinion Ip Bullet 4000 Version-

Bosch ≫ Dinion Ip Bullet 5000 Firmware Versioncpp4

Bosch ≫ Dinion Ip Bullet 5000 Version-

Bosch ≫ Dinion Ip 4000 Hd Firmware Versioncpp4

Bosch ≫ Dinion Ip 4000 Hd Version-

Bosch ≫ Dinion Ip 5000 Hd Firmware Versioncpp4

Bosch ≫ Dinion Ip 5000 Hd Version-

Bosch ≫ Dinion Ip 5000 Mp Firmware Versioncpp4

Bosch ≫ Dinion Ip 5000 Mp Version-

Bosch ≫ Dinion Ip Starlight 7000 Hd Firmware Versioncpp4

Bosch ≫ Dinion Ip Starlight 7000 Hd Version-

Bosch ≫ Flexidome Corner 9000 Mp Firmware Versioncpp4

Bosch ≫ Flexidome Corner 9000 Mp Version-

Bosch ≫ Flexidome Hd 1080p Firmware Versioncpp4

Bosch ≫ Flexidome Hd 1080p Version-

Bosch ≫ Flexidome Hd 1080p Hdr Firmware Versioncpp4

Bosch ≫ Flexidome Hd 1080p Hdr Version-

Bosch ≫ Flexidome Hd 720p Firmware Versioncpp4

Bosch ≫ Flexidome Hd 720p Version-

Bosch ≫ Vandal-proof Flexidome Hd 1080p Firmware Versioncpp4

Bosch ≫ Vandal-proof Flexidome Hd 1080p Version-

Bosch ≫ Vandal-proof Flexidome Hd 1080p Hdr Firmware Versioncpp4

Bosch ≫ Vandal-proof Flexidome Hd 1080p Hdr Version-

Bosch ≫ Vandal-proof Flexidome Hd 720p Firmware Versioncpp4

Bosch ≫ Vandal-proof Flexidome Hd 720p Version-

Bosch ≫ Flexidome Ip Micro 2000 Hd Firmware Versioncpp4

Bosch ≫ Flexidome Ip Micro 2000 Hd Version-

Bosch ≫ Flexidome Ip Micro 2000 Ip Firmware Versioncpp4

Bosch ≫ Flexidome Ip Micro 2000 Ip Version-

Bosch ≫ Flexidome Ip Indoor 4000 Hd Firmware Versioncpp4

Bosch ≫ Flexidome Ip Indoor 4000 Hd Version-

Bosch ≫ Flexidome Ip Indoor 4000 Ir Firmware Versioncpp4

Bosch ≫ Flexidome Ip Indoor 4000 Ir Version-

Bosch ≫ Flexidome Ip Outdoor 4000 Hd Firmware Versioncpp4

Bosch ≫ Flexidome Ip Outdoor 4000 Hd Version-

Bosch ≫ Flexidome Ip Outdoor 4000 Ir Firmware Versioncpp4

Bosch ≫ Flexidome Ip Outdoor 4000 Ir Version-

Bosch ≫ Flexidome Ip Indoor 5000 Hd Firmware Versioncpp4

Bosch ≫ Flexidome Ip Indoor 5000 Hd Version-

Bosch ≫ Flexidome Ip Indoor 5000 Mp Firmware Versioncpp4

Bosch ≫ Flexidome Ip Indoor 5000 Mp Version-

Bosch ≫ Flexidome Ip Micro 5000 Mp Firmware Versioncpp4

Bosch ≫ Flexidome Ip Micro 5000 Mp Version-

Bosch ≫ Flexidome Ip Outdoor 5000 Hd Firmware Versioncpp4

Bosch ≫ Flexidome Ip Outdoor 5000 Hd Version-

Bosch ≫ Flexidome Ip Outdoor 5000 Mp Firmware Versioncpp4

Bosch ≫ Flexidome Ip Outdoor 5000 Mp Version-

Bosch ≫ Flexidome Ip Panoramic 5000 Firmware Versioncpp4

Bosch ≫ Flexidome Ip Panoramic 5000 Version-

Bosch ≫ Ip Bullet 4000 Hd Firmware Versioncpp4

Bosch ≫ Ip Bullet 4000 Hd Version-

Bosch ≫ Ip Bullet 5000 Hd Firmware Versioncpp4

Bosch ≫ Ip Bullet 5000 Hd Version-

Bosch ≫ Ip Micro 2000 Firmware Versioncpp4

Bosch ≫ Ip Micro 2000 Version-

Bosch ≫ Ip Micro 2000 Hd Firmware Versioncpp4

Bosch ≫ Ip Micro 2000 Hd Version-

Bosch ≫ Mic Ip Dynamic 7000 Firmware Versioncpp4

Bosch ≫ Mic Ip Dynamic 7000 Version-

Bosch ≫ Mic Ip Starlight 7000 Firmware Versioncpp4

Bosch ≫ Mic Ip Starlight 7000 Version-

Bosch ≫ Tinyon Ip 2000 Firmware Versioncpp4

Bosch ≫ Tinyon Ip 2000 Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.27%	0.5

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.2	1.2	5.9	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov	6.5	8	6.4	AV:N/AC:L/Au:S/C:P/I:P/A:P
psirt@bosch.com	6.8	0.9	5.9	CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-120 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.

CWE-121 Stack-based Buffer Overflow

A stack-based buffer overflow condition is a condition where the buffer being overwritten is allocated on the stack (i.e., is a local variable or, rarely, a parameter to a function).

https://psirt.bosch.com/security-advisories/bosch-sa-478243-bt.html

Vendor Advisory

Not Applicable

https://psirt.bosch.com/security-advisories/bosch-sa-446276-bt.html

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2021-23850

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2021-23850

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2021-23850

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2021-23850