Lucene search

BoschCVELIST:CVE-2021-23850

HistoryMar 30, 2022 - 4:03 p.m.

CVE-2021-23850 Buffer Overflow vulnerability in the recovery image telnet server

2022-03-3016:03:03

CWE-121

bosch

www.cve.org

cve-2021-23850

buffer overflow

telnet server

remote code execution

firmware upload

CVSS3

6.8

Attack Vector

PHYSICAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

7.7

Confidence

High

EPSS

0.002

Percentile

53.6%

JSON

A specially crafted TCP/IP packet may cause a camera recovery image telnet interface to crash. It may also cause a buffer overflow which could enable remote code execution. The recovery image can only be booted with administrative rights or with physical access to the camera and allows the upload of a new firmware in case of a damaged firmware.

CNA Affected

[
  {
    "platforms": [
      "CPP4, CPP6, CPP7, CPP7.3"
    ],
    "product": "CPP Firmware",
    "vendor": "Bosch",
    "versions": [
      {
        "status": "affected",
        "version": "all"
      }
    ]
  }
]

References

psirt.bosch.com/security-advisories/bosch-sa-478243-bt.html

CVSS3

6.8

Attack Vector

PHYSICAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

7.7

Confidence

High

EPSS

0.002

Percentile

53.6%

JSON

Related for CVELIST:CVE-2021-23850