Unrated severityNVD Advisory· Published Mar 25, 2021· Updated Sep 16, 2024

Uncontrolled Search Path Element in Bosch Configuration Manager Installer

CVE-2020-6788

Description

Loading a DLL through an Uncontrolled Search Path Element in the Bosch Configuration Manager installer up to and including version 7.21.0078 potentially allows an attacker to execute arbitrary code on a victim's system. A prerequisite is that the victim is tricked into placing a malicious DLL in the same directory where the installer is started from.

Affected products

Bosch/Configuration Managerv5
Range: unspecified

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

psirt.bosch.com/security-advisories/bosch-sa-835563-bt.htmlmitrex_refsource_CONFIRM

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000