CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
34.0%
The vulnerability allows an unauthenticated remote attacker to upload arbitrary files under the context of the application OS user (“root”) via a crafted HTTP request.
Vendor | Product | Version | CPE |
---|---|---|---|
bosch | nexo-os | * | cpe:2.3:o:bosch:nexo-os:*:*:*:*:*:*:*:* |
bosch | nexo_cordless_nutrunner_nxa011s-36v-b_\(0608842012\) | - | cpe:2.3:h:bosch:nexo_cordless_nutrunner_nxa011s-36v-b_\(0608842012\):-:*:*:*:*:*:*:* |
bosch | nexo_cordless_nutrunner_nxa011s-36v_\(0608842011\) | - | cpe:2.3:h:bosch:nexo_cordless_nutrunner_nxa011s-36v_\(0608842011\):-:*:*:*:*:*:*:* |
bosch | nexo_cordless_nutrunner_nxa015s-36v-b_\(0608842006\) | - | cpe:2.3:h:bosch:nexo_cordless_nutrunner_nxa015s-36v-b_\(0608842006\):-:*:*:*:*:*:*:* |
bosch | nexo_cordless_nutrunner_nxa015s-36v_\(0608842001\) | - | cpe:2.3:h:bosch:nexo_cordless_nutrunner_nxa015s-36v_\(0608842001\):-:*:*:*:*:*:*:* |
bosch | nexo_cordless_nutrunner_nxa030s-36v-b_\(0608842007\) | - | cpe:2.3:h:bosch:nexo_cordless_nutrunner_nxa030s-36v-b_\(0608842007\):-:*:*:*:*:*:*:* |
bosch | nexo_cordless_nutrunner_nxa030s-36v_\(0608842002\) | - | cpe:2.3:h:bosch:nexo_cordless_nutrunner_nxa030s-36v_\(0608842002\):-:*:*:*:*:*:*:* |
bosch | nexo_cordless_nutrunner_nxa050s-36v-b_\(0608842008\) | - | cpe:2.3:h:bosch:nexo_cordless_nutrunner_nxa050s-36v-b_\(0608842008\):-:*:*:*:*:*:*:* |
bosch | nexo_cordless_nutrunner_nxa050s-36v_\(0608842003\) | - | cpe:2.3:h:bosch:nexo_cordless_nutrunner_nxa050s-36v_\(0608842003\):-:*:*:*:*:*:*:* |
bosch | nexo_cordless_nutrunner_nxa065s-36v-b_\(0608842014\) | - | cpe:2.3:h:bosch:nexo_cordless_nutrunner_nxa065s-36v-b_\(0608842014\):-:*:*:*:*:*:*:* |
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
34.0%