CVE-2021-23851 - Vulnerability Details

A specially crafted TCP/IP packet may cause the camera recovery image web interface to crash. It may also cause a buffer overflow which could enable remote code execution. The recovery image can only be booted with administrative rights or with physical access to the camera and allows the upload of a new firmware in case of a damaged firmware.

No CVSS v4.0

Attack Vector Physical

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication Single

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

This CVE is not in the KEV list.

The EPSS score is 0.00236.

Key SSVC decision points have not yet been added.

Vendors	Products
Bosch Subscribe	Autodome 7000 Subscribe Autodome 7000 Firmware Subscribe Autodome Ip 4000 Hd Subscribe Autodome Ip 4000 Hd Firmware Subscribe Autodome Ip 4000i Subscribe Autodome Ip 4000i Firmware Subscribe Autodome Ip 5000 Hd Subscribe Autodome Ip 5000 Hd Firmware Subscribe Autodome Ip 5000 Ir Subscribe Autodome Ip 5000 Ir Firmware Subscribe Autodome Ip 5000i Subscribe Autodome Ip 5000i Firmware Subscribe Autodome Ip Starlight 5000i Subscribe Autodome Ip Starlight 5000i Firmware Subscribe Autodome Ip Starlight 7000i Subscribe Autodome Ip Starlight 7000i Firmware Subscribe Aviotec Ip Starlight 8000 Subscribe Aviotec Ip Starlight 8000 Firmware Subscribe Dinion Hd 1080p Subscribe Dinion Hd 1080p Firmware Subscribe Dinion Hd 1080p Hdr Subscribe Dinion Hd 1080p Hdr Firmware Subscribe Dinion Hd 720p Subscribe Dinion Hd 720p Firmware Subscribe Dinion Imager 9000 Hd Subscribe Dinion Imager 9000 Hd Firmware Subscribe Dinion Ip 3000i Subscribe Dinion Ip 3000i Firmware Subscribe Dinion Ip 4000 Hd Subscribe Dinion Ip 4000 Hd Firmware Subscribe Dinion Ip 5000 Hd Subscribe Dinion Ip 5000 Hd Firmware Subscribe Dinion Ip 5000 Mp Subscribe Dinion Ip 5000 Mp Firmware Subscribe Dinion Ip Bullet 4000 Subscribe Dinion Ip Bullet 4000 Firmware Subscribe Dinion Ip Bullet 4000i Subscribe Dinion Ip Bullet 4000i Firmware Subscribe Dinion Ip Bullet 5000 Subscribe Dinion Ip Bullet 5000 Firmware Subscribe Dinion Ip Bullet 5000i Subscribe Dinion Ip Bullet 5000i Firmware Subscribe Dinion Ip Bullet 6000i Subscribe Dinion Ip Bullet 6000i Firmware Subscribe Dinion Ip Starlight 6000 Subscribe Dinion Ip Starlight 6000 Firmware Subscribe Dinion Ip Starlight 7000 Subscribe Dinion Ip Starlight 7000 Firmware Subscribe Dinion Ip Starlight 7000 Hd Subscribe Dinion Ip Starlight 7000 Hd Firmware Subscribe Dinion Ip Starlight 8000 Subscribe Dinion Ip Starlight 8000 Firmware Subscribe Dinion Ip Thermal 8000 Subscribe Dinion Ip Thermal 8000 Firmware Subscribe Dinion Ip Thermal 9000 Rm Subscribe Dinion Ip Thermal 9000 Rm Firmware Subscribe Dinion Ip Ultra 8000 Subscribe Dinion Ip Ultra 8000 Firmware Subscribe Flexidome Corner 9000 Mp Subscribe Flexidome Corner 9000 Mp Firmware Subscribe Flexidome Hd 1080p Subscribe Flexidome Hd 1080p Firmware Subscribe Flexidome Hd 1080p Hdr Subscribe Flexidome Hd 1080p Hdr Firmware Subscribe Flexidome Hd 720p Subscribe Flexidome Hd 720p Firmware Subscribe Flexidome Ip 3000i Subscribe Flexidome Ip 3000i Firmware Subscribe Flexidome Ip 4000i Subscribe Flexidome Ip 4000i Firmware Subscribe Flexidome Ip 5000i Subscribe Flexidome Ip 5000i Firmware Subscribe Flexidome Ip Indoor 4000 Hd Subscribe Flexidome Ip Indoor 4000 Hd Firmware Subscribe Flexidome Ip Indoor 4000 Ir Subscribe Flexidome Ip Indoor 4000 Ir Firmware Subscribe Flexidome Ip Indoor 5000 Hd Subscribe Flexidome Ip Indoor 5000 Hd Firmware Subscribe Flexidome Ip Indoor 5000 Mp Subscribe Flexidome Ip Indoor 5000 Mp Firmware Subscribe Flexidome Ip Micro 2000 Hd Subscribe Flexidome Ip Micro 2000 Hd Firmware Subscribe Flexidome Ip Micro 2000 Ip Subscribe Flexidome Ip Micro 2000 Ip Firmware Subscribe Flexidome Ip Micro 5000 Mp Subscribe Flexidome Ip Micro 5000 Mp Firmware Subscribe Flexidome Ip Outdoor 4000 Hd Subscribe Flexidome Ip Outdoor 4000 Hd Firmware Subscribe Flexidome Ip Outdoor 4000 Ir Subscribe Flexidome Ip Outdoor 4000 Ir Firmware Subscribe Flexidome Ip Outdoor 5000 Hd Subscribe Flexidome Ip Outdoor 5000 Hd Firmware Subscribe Flexidome Ip Outdoor 5000 Mp Subscribe Flexidome Ip Outdoor 5000 Mp Firmware Subscribe Flexidome Ip Panoramic 5000 Subscribe Flexidome Ip Panoramic 5000 Firmware Subscribe Flexidome Ip Panoramic 6000 Subscribe Flexidome Ip Panoramic 6000 Firmware Subscribe Flexidome Ip Panoramic 7000 Subscribe Flexidome Ip Panoramic 7000 Firmware Subscribe Flexidome Ip Starlight 5000i Subscribe Flexidome Ip Starlight 5000i Firmware Subscribe Flexidome Ip Starlight 6000 Subscribe Flexidome Ip Starlight 6000 Firmware Subscribe Flexidome Ip Starlight 7000 Subscribe Flexidome Ip Starlight 7000 Firmware Subscribe Flexidome Ip Starlight 8000i Subscribe Flexidome Ip Starlight 8000i Firmware Subscribe Ip Bullet 4000 Hd Subscribe Ip Bullet 4000 Hd Firmware Subscribe Ip Bullet 5000 Hd Subscribe Ip Bullet 5000 Hd Firmware Subscribe Ip Micro 2000 Subscribe Ip Micro 2000 Firmware Subscribe Ip Micro 2000 Hd Subscribe Ip Micro 2000 Hd Firmware Subscribe Mic Ip Dynamic 7000 Subscribe Mic Ip Dynamic 7000 Firmware Subscribe Mic Ip Fusion 9000i Subscribe Mic Ip Fusion 9000i Firmware Subscribe Mic Ip Starlight 7000 Subscribe Mic Ip Starlight 7000 Firmware Subscribe Mic Ip Starlight 7000i Subscribe Mic Ip Starlight 7000i Firmware Subscribe Mic Ip Starlight 7100i Subscribe Mic Ip Starlight 7100i Firmware Subscribe Mic Ip Ultra 7100i Subscribe Mic Ip Ultra 7100i Firmware Subscribe Tinyon Ip 2000 Subscribe Tinyon Ip 2000 Firmware Subscribe Vandal-proof Flexidome Hd 1080p Subscribe Vandal-proof Flexidome Hd 1080p Firmware Subscribe Vandal-proof Flexidome Hd 1080p Hdr Subscribe Vandal-proof Flexidome Hd 1080p Hdr Firmware Subscribe Vandal-proof Flexidome Hd 720p Subscribe Vandal-proof Flexidome Hd 720p Firmware Subscribe

Configuration 1 [-]

AND

cpe:2.3:o:bosch:autodome_ip_4000i_firmware:cpp7.3:*:*:*:*:*:*:*

cpe:2.3:h:bosch:autodome_ip_4000i:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND

cpe:2.3:o:bosch:autodome_ip_5000i_firmware:cpp7.3:*:*:*:*:*:*:*

cpe:2.3:h:bosch:autodome_ip_5000i:-:*:*:*:*:*:*:*

Configuration 3 [-]

AND

cpe:2.3:o:bosch:autodome_ip_starlight_5000i_firmware:cpp7.3:*:*:*:*:*:*:*

cpe:2.3:h:bosch:autodome_ip_starlight_5000i:-:*:*:*:*:*:*:*

Configuration 4 [-]

AND

cpe:2.3:o:bosch:autodome_ip_starlight_7000i_firmware:cpp7.3:*:*:*:*:*:*:*

cpe:2.3:h:bosch:autodome_ip_starlight_7000i:-:*:*:*:*:*:*:*

Configuration 5 [-]

AND

cpe:2.3:o:bosch:dinion_ip_3000i_firmware:cpp7.3:*:*:*:*:*:*:*

cpe:2.3:h:bosch:dinion_ip_3000i:-:*:*:*:*:*:*:*

Configuration 6 [-]

AND

cpe:2.3:o:bosch:dinion_ip_bullet_4000i_firmware:cpp7.3:*:*:*:*:*:*:*

cpe:2.3:h:bosch:dinion_ip_bullet_4000i:-:*:*:*:*:*:*:*

Configuration 7 [-]

AND

cpe:2.3:o:bosch:dinion_ip_bullet_5000_firmware:cpp7.3:*:*:*:*:*:*:*

cpe:2.3:h:bosch:dinion_ip_bullet_5000:-:*:*:*:*:*:*:*

Configuration 8 [-]

AND

cpe:2.3:o:bosch:dinion_ip_bullet_5000i_firmware:cpp7.3:*:*:*:*:*:*:*

cpe:2.3:h:bosch:dinion_ip_bullet_5000i:-:*:*:*:*:*:*:*

Configuration 9 [-]

AND

cpe:2.3:o:bosch:dinion_ip_bullet_6000i_firmware:cpp7.3:*:*:*:*:*:*:*

cpe:2.3:h:bosch:dinion_ip_bullet_6000i:-:*:*:*:*:*:*:*

Configuration 10 [-]

AND

cpe:2.3:o:bosch:flexidome_ip_3000i_firmware:cpp7.3:*:*:*:*:*:*:*

cpe:2.3:h:bosch:flexidome_ip_3000i:-:*:*:*:*:*:*:*

Configuration 11 [-]

AND

cpe:2.3:o:bosch:flexidome_ip_4000i_firmware:cpp7.3:*:*:*:*:*:*:*

cpe:2.3:h:bosch:flexidome_ip_4000i:-:*:*:*:*:*:*:*

Configuration 12 [-]

AND

cpe:2.3:o:bosch:flexidome_ip_5000i_firmware:cpp7.3:*:*:*:*:*:*:*

cpe:2.3:h:bosch:flexidome_ip_5000i:-:*:*:*:*:*:*:*

Configuration 13 [-]

AND

cpe:2.3:o:bosch:flexidome_ip_starlight_5000i_firmware:cpp7.3:*:*:*:*:*:*:*

cpe:2.3:h:bosch:flexidome_ip_starlight_5000i:-:*:*:*:*:*:*:*

Configuration 14 [-]

AND

cpe:2.3:o:bosch:flexidome_ip_starlight_8000i_firmware:cpp7.3:*:*:*:*:*:*:*

cpe:2.3:h:bosch:flexidome_ip_starlight_8000i:-:*:*:*:*:*:*:*

Configuration 15 [-]

AND

cpe:2.3:o:bosch:mic_ip_starlight_7000i_firmware:cpp7.3:*:*:*:*:*:*:*

cpe:2.3:h:bosch:mic_ip_starlight_7000i:-:*:*:*:*:*:*:*

Configuration 16 [-]

AND

cpe:2.3:o:bosch:mic_ip_starlight_7100i_firmware:cpp7.3:*:*:*:*:*:*:*

cpe:2.3:h:bosch:mic_ip_starlight_7100i:-:*:*:*:*:*:*:*

Configuration 17 [-]

AND

cpe:2.3:o:bosch:mic_ip_ultra_7100i_firmware:cpp7.3:*:*:*:*:*:*:*

cpe:2.3:h:bosch:mic_ip_ultra_7100i:-:*:*:*:*:*:*:*

Configuration 18 [-]

AND

cpe:2.3:o:bosch:mic_ip_fusion_9000i_firmware:cpp7.3:*:*:*:*:*:*:*

cpe:2.3:h:bosch:mic_ip_fusion_9000i:-:*:*:*:*:*:*:*

Configuration 19 [-]

AND

cpe:2.3:o:bosch:dinion_ip_starlight_6000_firmware:cpp7:*:*:*:*:*:*:*

cpe:2.3:h:bosch:dinion_ip_starlight_6000:-:*:*:*:*:*:*:*

Configuration 20 [-]

AND

cpe:2.3:o:bosch:dinion_ip_starlight_7000_firmware:cpp7:*:*:*:*:*:*:*

cpe:2.3:h:bosch:dinion_ip_starlight_7000:-:*:*:*:*:*:*:*

Configuration 21 [-]

AND

cpe:2.3:o:bosch:dinion_ip_thermal_8000_firmware:cpp7:*:*:*:*:*:*:*

cpe:2.3:h:bosch:dinion_ip_thermal_8000:-:*:*:*:*:*:*:*

Configuration 22 [-]

AND

cpe:2.3:o:bosch:flexidome_ip_starlight_6000_firmware:cpp7:*:*:*:*:*:*:*

cpe:2.3:h:bosch:flexidome_ip_starlight_6000:-:*:*:*:*:*:*:*

Configuration 23 [-]

AND

cpe:2.3:o:bosch:flexidome_ip_starlight_7000_firmware:cpp7:*:*:*:*:*:*:*

cpe:2.3:h:bosch:flexidome_ip_starlight_7000:-:*:*:*:*:*:*:*

Configuration 24 [-]

AND

cpe:2.3:o:bosch:dinion_ip_thermal_9000_rm_firmware:cpp7:*:*:*:*:*:*:*

cpe:2.3:h:bosch:dinion_ip_thermal_9000_rm:-:*:*:*:*:*:*:*

Configuration 25 [-]

AND

cpe:2.3:o:bosch:aviotec_ip_starlight_8000_firmware:cpp6:*:*:*:*:*:*:*

cpe:2.3:h:bosch:aviotec_ip_starlight_8000:-:*:*:*:*:*:*:*

Configuration 26 [-]

AND

cpe:2.3:o:bosch:dinion_ip_starlight_8000_firmware:cpp6:*:*:*:*:*:*:*

cpe:2.3:h:bosch:dinion_ip_starlight_8000:-:*:*:*:*:*:*:*

Configuration 27 [-]

AND

cpe:2.3:o:bosch:dinion_ip_ultra_8000_firmware:cpp6:*:*:*:*:*:*:*

cpe:2.3:h:bosch:dinion_ip_ultra_8000:-:*:*:*:*:*:*:*

Configuration 28 [-]

AND

cpe:2.3:o:bosch:flexidome_ip_panoramic_6000_firmware:cpp6:*:*:*:*:*:*:*

cpe:2.3:h:bosch:flexidome_ip_panoramic_6000:-:*:*:*:*:*:*:*

Configuration 29 [-]

AND

cpe:2.3:o:bosch:flexidome_ip_panoramic_7000_firmware:cpp6:*:*:*:*:*:*:*

cpe:2.3:h:bosch:flexidome_ip_panoramic_7000:-:*:*:*:*:*:*:*

Configuration 30 [-]

AND

cpe:2.3:o:bosch:autodome_ip_4000_hd_firmware:cpp4:*:*:*:*:*:*:*

cpe:2.3:h:bosch:autodome_ip_4000_hd:-:*:*:*:*:*:*:*

Configuration 31 [-]

AND

cpe:2.3:o:bosch:autodome_ip_5000_hd_firmware:cpp4:*:*:*:*:*:*:*

cpe:2.3:h:bosch:autodome_ip_5000_hd:-:*:*:*:*:*:*:*

Configuration 32 [-]

AND

cpe:2.3:o:bosch:autodome_ip_5000_ir_firmware:cpp4:*:*:*:*:*:*:*

cpe:2.3:h:bosch:autodome_ip_5000_ir:-:*:*:*:*:*:*:*

Configuration 33 [-]

AND

cpe:2.3:o:bosch:autodome_7000_firmware:cpp4:*:*:*:*:*:*:*

cpe:2.3:h:bosch:autodome_7000:-:*:*:*:*:*:*:*

Configuration 34 [-]

AND

cpe:2.3:o:bosch:dinion_hd_1080p_firmware:cpp4:*:*:*:*:*:*:*

cpe:2.3:h:bosch:dinion_hd_1080p:-:*:*:*:*:*:*:*

Configuration 35 [-]

AND

cpe:2.3:o:bosch:dinion_hd_1080p_hdr_firmware:cpp4:*:*:*:*:*:*:*

cpe:2.3:h:bosch:dinion_hd_1080p_hdr:-:*:*:*:*:*:*:*

Configuration 36 [-]

AND

cpe:2.3:o:bosch:dinion_hd_720p_firmware:cpp4:*:*:*:*:*:*:*

cpe:2.3:h:bosch:dinion_hd_720p:-:*:*:*:*:*:*:*

Configuration 37 [-]

AND

cpe:2.3:o:bosch:dinion_imager_9000_hd_firmware:cpp4:*:*:*:*:*:*:*

cpe:2.3:h:bosch:dinion_imager_9000_hd:-:*:*:*:*:*:*:*

Configuration 38 [-]

AND

cpe:2.3:o:bosch:dinion_ip_bullet_4000_firmware:cpp4:*:*:*:*:*:*:*

cpe:2.3:h:bosch:dinion_ip_bullet_4000:-:*:*:*:*:*:*:*

Configuration 39 [-]

AND

cpe:2.3:o:bosch:dinion_ip_bullet_5000_firmware:cpp4:*:*:*:*:*:*:*

cpe:2.3:h:bosch:dinion_ip_bullet_5000:-:*:*:*:*:*:*:*

Configuration 40 [-]

AND

cpe:2.3:o:bosch:dinion_ip_4000_hd_firmware:cpp4:*:*:*:*:*:*:*

cpe:2.3:h:bosch:dinion_ip_4000_hd:-:*:*:*:*:*:*:*

Configuration 41 [-]

AND

cpe:2.3:o:bosch:dinion_ip_5000_hd_firmware:cpp4:*:*:*:*:*:*:*

cpe:2.3:h:bosch:dinion_ip_5000_hd:-:*:*:*:*:*:*:*

Configuration 42 [-]

AND

cpe:2.3:o:bosch:dinion_ip_5000_mp_firmware:cpp4:*:*:*:*:*:*:*

cpe:2.3:h:bosch:dinion_ip_5000_mp:-:*:*:*:*:*:*:*

Configuration 43 [-]

AND

cpe:2.3:o:bosch:dinion_ip_starlight_7000_hd_firmware:cpp4:*:*:*:*:*:*:*

cpe:2.3:h:bosch:dinion_ip_starlight_7000_hd:-:*:*:*:*:*:*:*

Configuration 44 [-]

AND

cpe:2.3:o:bosch:flexidome_corner_9000_mp_firmware:cpp4:*:*:*:*:*:*:*

cpe:2.3:h:bosch:flexidome_corner_9000_mp:-:*:*:*:*:*:*:*

Configuration 45 [-]

AND

cpe:2.3:o:bosch:flexidome_hd_1080p_firmware:cpp4:*:*:*:*:*:*:*

cpe:2.3:h:bosch:flexidome_hd_1080p:-:*:*:*:*:*:*:*

Configuration 46 [-]

AND

cpe:2.3:o:bosch:flexidome_hd_1080p_hdr_firmware:cpp4:*:*:*:*:*:*:*

cpe:2.3:h:bosch:flexidome_hd_1080p_hdr:-:*:*:*:*:*:*:*

Configuration 47 [-]

AND

cpe:2.3:o:bosch:flexidome_hd_720p_firmware:cpp4:*:*:*:*:*:*:*

cpe:2.3:h:bosch:flexidome_hd_720p:-:*:*:*:*:*:*:*

Configuration 48 [-]

AND

cpe:2.3:o:bosch:vandal-proof_flexidome_hd_1080p_firmware:cpp4:*:*:*:*:*:*:*

cpe:2.3:h:bosch:vandal-proof_flexidome_hd_1080p:-:*:*:*:*:*:*:*

Configuration 49 [-]

AND

cpe:2.3:o:bosch:vandal-proof_flexidome_hd_1080p_hdr_firmware:cpp4:*:*:*:*:*:*:*

cpe:2.3:h:bosch:vandal-proof_flexidome_hd_1080p_hdr:-:*:*:*:*:*:*:*

Configuration 50 [-]

AND

cpe:2.3:o:bosch:vandal-proof_flexidome_hd_720p_firmware:cpp4:*:*:*:*:*:*:*

cpe:2.3:h:bosch:vandal-proof_flexidome_hd_720p:-:*:*:*:*:*:*:*

Configuration 51 [-]

AND

cpe:2.3:o:bosch:flexidome_ip_micro_2000_hd_firmware:cpp4:*:*:*:*:*:*:*

cpe:2.3:h:bosch:flexidome_ip_micro_2000_hd:-:*:*:*:*:*:*:*

Configuration 52 [-]

AND

cpe:2.3:o:bosch:flexidome_ip_micro_2000_ip_firmware:cpp4:*:*:*:*:*:*:*

cpe:2.3:h:bosch:flexidome_ip_micro_2000_ip:-:*:*:*:*:*:*:*

Configuration 53 [-]

AND

cpe:2.3:o:bosch:flexidome_ip_indoor_4000_hd_firmware:cpp4:*:*:*:*:*:*:*

cpe:2.3:h:bosch:flexidome_ip_indoor_4000_hd:-:*:*:*:*:*:*:*

Configuration 54 [-]

AND

cpe:2.3:o:bosch:flexidome_ip_indoor_4000_ir_firmware:cpp4:*:*:*:*:*:*:*

cpe:2.3:h:bosch:flexidome_ip_indoor_4000_ir:-:*:*:*:*:*:*:*

Configuration 55 [-]

AND

cpe:2.3:o:bosch:flexidome_ip_outdoor_4000_hd_firmware:cpp4:*:*:*:*:*:*:*

cpe:2.3:h:bosch:flexidome_ip_outdoor_4000_hd:-:*:*:*:*:*:*:*

Configuration 56 [-]

AND

cpe:2.3:o:bosch:flexidome_ip_outdoor_4000_ir_firmware:cpp4:*:*:*:*:*:*:*

cpe:2.3:h:bosch:flexidome_ip_outdoor_4000_ir:-:*:*:*:*:*:*:*

Configuration 57 [-]

AND

cpe:2.3:o:bosch:flexidome_ip_indoor_5000_hd_firmware:cpp4:*:*:*:*:*:*:*

cpe:2.3:h:bosch:flexidome_ip_indoor_5000_hd:-:*:*:*:*:*:*:*

Configuration 58 [-]

AND

cpe:2.3:o:bosch:flexidome_ip_indoor_5000_mp_firmware:cpp4:*:*:*:*:*:*:*

cpe:2.3:h:bosch:flexidome_ip_indoor_5000_mp:-:*:*:*:*:*:*:*

Configuration 59 [-]

AND

cpe:2.3:o:bosch:flexidome_ip_micro_5000_mp_firmware:cpp4:*:*:*:*:*:*:*

cpe:2.3:h:bosch:flexidome_ip_micro_5000_mp:-:*:*:*:*:*:*:*

Configuration 60 [-]

AND

cpe:2.3:o:bosch:flexidome_ip_outdoor_5000_hd_firmware:cpp4:*:*:*:*:*:*:*

cpe:2.3:h:bosch:flexidome_ip_outdoor_5000_hd:-:*:*:*:*:*:*:*

Configuration 61 [-]

AND

cpe:2.3:o:bosch:flexidome_ip_outdoor_5000_mp_firmware:cpp4:*:*:*:*:*:*:*

cpe:2.3:h:bosch:flexidome_ip_outdoor_5000_mp:-:*:*:*:*:*:*:*

Configuration 62 [-]

AND

cpe:2.3:o:bosch:flexidome_ip_panoramic_5000_firmware:cpp4:*:*:*:*:*:*:*

cpe:2.3:h:bosch:flexidome_ip_panoramic_5000:-:*:*:*:*:*:*:*

Configuration 63 [-]

AND

cpe:2.3:o:bosch:ip_bullet_4000_hd_firmware:cpp4:*:*:*:*:*:*:*

cpe:2.3:h:bosch:ip_bullet_4000_hd:-:*:*:*:*:*:*:*

Configuration 64 [-]

AND

cpe:2.3:o:bosch:ip_bullet_5000_hd_firmware:cpp4:*:*:*:*:*:*:*

cpe:2.3:h:bosch:ip_bullet_5000_hd:-:*:*:*:*:*:*:*

Configuration 65 [-]

AND

cpe:2.3:o:bosch:ip_micro_2000_firmware:cpp4:*:*:*:*:*:*:*

cpe:2.3:h:bosch:ip_micro_2000:-:*:*:*:*:*:*:*

Configuration 66 [-]

AND

cpe:2.3:o:bosch:ip_micro_2000_hd_firmware:cpp4:*:*:*:*:*:*:*

cpe:2.3:h:bosch:ip_micro_2000_hd:-:*:*:*:*:*:*:*

Configuration 67 [-]

AND

cpe:2.3:o:bosch:mic_ip_dynamic_7000_firmware:cpp4:*:*:*:*:*:*:*

cpe:2.3:h:bosch:mic_ip_dynamic_7000:-:*:*:*:*:*:*:*

Configuration 68 [-]

AND

cpe:2.3:o:bosch:mic_ip_starlight_7000_firmware:cpp4:*:*:*:*:*:*:*

cpe:2.3:h:bosch:mic_ip_starlight_7000:-:*:*:*:*:*:*:*

Configuration 69 [-]

AND

cpe:2.3:o:bosch:tinyon_ip_2000_firmware:cpp4:*:*:*:*:*:*:*

cpe:2.3:h:bosch:tinyon_ip_2000:-:*:*:*:*:*:*:*

No data.

Advisories

Source	ID	Title
EUVD	EUVD-2021-10777	A specially crafted TCP/IP packet may cause the camera recovery image web interface to crash. It may also cause a buffer overflow which could enable remote code execution. The recovery image can only be booted with administrative rights or with physical access to the camera and allows the upload of a new firmware in case of a damaged firmware.

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References

Link	Providers
https://psirt.bosch.com/security-advisories/bosch-sa-446276-bt.html
https://psirt.bosch.com/security-advisories/bosch-sa-478243-bt.html

History

Mon, 16 Sep 2024 18:45:00 +0000

Type	Values Removed	Values Added
Title	Buffer Overflow vulnerability in the recovery image web-based interface	Buffer Overflow vulnerability in the recovery image web-based interface

Projects

Sign in to view the affected projects.

MITRE

Status: PUBLISHED

Assigner: bosch

Published: 2022-03-30T16:03:04.883322Z

Updated: 2024-09-16T18:39:12.509Z

Reserved: 2021-01-12T00:00:00

Link: CVE-2021-23851

Vulnrichment

No data.

NVD

Status : Modified

Published: 2022-03-30T16:15:08.907

Modified: 2024-11-21T05:51:56.820

Link: CVE-2021-23851

Redhat

No data.

OpenCVE Enrichment

No data.

Weaknesses

Metrics

Attack Vector Physical

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Access Vector Network

Access Complexity Low

Authentication Single

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

Affected Vendors & Products

Projects

Metrics

Attack Vector Physical

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Access Vector Network

Access Complexity Low

Authentication Single

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

Affected Vendors & Products

Projects

JSON object

JSON object

JSON object

JSON object

JSON object