Skip to main content

Video Recording Manager

8 CVEs product

Monthly

CVE-2023-32230 HIGH This Week

An improper handling of a malformed API request to an API server in Bosch BT software products can allow an unauthenticated attacker to cause a Denial of Service (DoS) situation. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Monitor Wall Videojet Decoder 7513 Firmware Videojet Decoder 7523 Firmware Video Recording Manager +1
NVD
CVSS 3.1
7.5
EPSS
0.7%
CVE-2021-23862 HIGH This Week

A crafted configuration packet sent by an authenticated administrative user can be used to execute arbitrary commands in system context. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE Bosch Video Management System Video Recording Manager Videojet Decoder 7513 Firmware Videojet Decoder 8000 Firmware
NVD
CVSS 3.1
7.2
EPSS
1.4%
CVE-2021-23861 MEDIUM This Month

By executing a special command, an user with administrative rights can get access to extended debug functionality on the VRM allowing an impact on integrity or availability of the installed software. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Bosch Video Management System Video Recording Manager
NVD
CVSS 3.1
6.5
EPSS
0.8%
CVE-2021-23860 MEDIUM This Month

An error in a page handler of the VRM may lead to a reflected cross site scripting (XSS) in the web-based interface. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Bosch Video Management System Video Recording Manager
NVD
CVSS 3.1
6.1
EPSS
0.5%
CVE-2021-23859 HIGH This Week

An unauthenticated attacker is able to send a special HTTP request, that causes a service to crash. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Bosch Video Management System Video Recording Manager Access Easy Controller Firmware Access Professional Edition +2
NVD
CVSS 3.1
7.5
EPSS
1.0%
CVE-2019-6957 CRITICAL Act Now

A recently discovered security vulnerability affects all Bosch Video Management System (BVMS) versions 9.0 and below, DIVAR IP 2000, 3000, 5000 and 7000, Video Recording Manager (VRM), Video. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Memory Corruption Access Professional Edition Bosch Video Client Bosch Video Management System +10
NVD
CVSS 3.1
9.8
EPSS
2.0%
CVE-2019-8952 MEDIUM This Month

A Path Traversal vulnerability located in the webserver affects several Bosch hardware and software products. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Path Traversal Divar Ip 2000 Firmware Divar Ip 5000 Firmware Video Management System Video Recording Manager
NVD
CVSS 3.0
6.5
EPSS
1.4%
CVE-2019-8951 MEDIUM This Month

An Open Redirect vulnerability located in the webserver affects several Bosch hardware and software products. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Open Redirect Divar Ip 2000 Firmware Divar Ip 5000 Firmware Video Management System Video Recording Manager
NVD
CVSS 3.0
6.1
EPSS
1.1%
EPSS 1% CVSS 7.5
HIGH This Week

An improper handling of a malformed API request to an API server in Bosch BT software products can allow an unauthenticated attacker to cause a Denial of Service (DoS) situation. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Monitor Wall Videojet Decoder 7513 Firmware +3
NVD
EPSS 1% CVSS 7.2
HIGH This Week

A crafted configuration packet sent by an authenticated administrative user can be used to execute arbitrary commands in system context. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE Bosch Video Management System Video Recording Manager +2
NVD
EPSS 1% CVSS 6.5
MEDIUM This Month

By executing a special command, an user with administrative rights can get access to extended debug functionality on the VRM allowing an impact on integrity or availability of the installed software. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Bosch Video Management System Video Recording Manager
NVD
EPSS 0% CVSS 6.1
MEDIUM This Month

An error in a page handler of the VRM may lead to a reflected cross site scripting (XSS) in the web-based interface. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Bosch Video Management System Video Recording Manager
NVD
EPSS 1% CVSS 7.5
HIGH This Week

An unauthenticated attacker is able to send a special HTTP request, that causes a service to crash. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Bosch Video Management System Video Recording Manager +4
NVD
EPSS 2% CVSS 9.8
CRITICAL Act Now

A recently discovered security vulnerability affects all Bosch Video Management System (BVMS) versions 9.0 and below, DIVAR IP 2000, 3000, 5000 and 7000, Video Recording Manager (VRM), Video. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Memory Corruption Access Professional Edition +12
NVD
EPSS 1% CVSS 6.5
MEDIUM This Month

A Path Traversal vulnerability located in the webserver affects several Bosch hardware and software products. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Path Traversal Divar Ip 2000 Firmware Divar Ip 5000 Firmware +2
NVD
EPSS 1% CVSS 6.1
MEDIUM This Month

An Open Redirect vulnerability located in the webserver affects several Bosch hardware and software products. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Open Redirect Divar Ip 2000 Firmware Divar Ip 5000 Firmware +2
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy