Skip to main content

Pra Es8P2S Firmware

3 CVEs product

Monthly

CVE-2022-32536 HIGH This Week

The user access rights validation in the web server of the Bosch Ethernet switch PRA-ES8P2S with software version 1.01.05 was insufficient. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Privilege Escalation Pra Es8P2S Firmware
NVD
CVSS 3.1
8.8
EPSS
1.0%
CVE-2022-32535 CRITICAL Act Now

The Bosch Ethernet switch PRA-ES8P2S with software version 1.01.05 runs its web server with root privilege. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Privilege Escalation Pra Es8P2S Firmware
NVD
CVSS 3.1
9.8
EPSS
0.7%
CVE-2022-32534 CRITICAL Act Now

The Bosch Ethernet switch PRA-ES8P2S with software version 1.01.05 and earlier was found to be vulnerable to command injection through its diagnostics web interface. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Command Injection Pra Es8P2S Firmware
NVD
CVSS 3.1
9.8
EPSS
2.3%
EPSS 1% CVSS 8.8
HIGH This Week

The user access rights validation in the web server of the Bosch Ethernet switch PRA-ES8P2S with software version 1.01.05 was insufficient. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Privilege Escalation Pra Es8P2S Firmware
NVD
EPSS 1% CVSS 9.8
CRITICAL Act Now

The Bosch Ethernet switch PRA-ES8P2S with software version 1.01.05 runs its web server with root privilege. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Privilege Escalation Pra Es8P2S Firmware
NVD
EPSS 2% CVSS 9.8
CRITICAL Act Now

The Bosch Ethernet switch PRA-ES8P2S with software version 1.01.05 and earlier was found to be vulnerable to command injection through its diagnostics web interface. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Command Injection Pra Es8P2S Firmware
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy