VYPR

Bosch IoT Gateway Software

by Bosch

CVEs (4)

  • CVE-2019-11603Aug 21, 2019
    risk 0.00cvss epss 0.02

    A HTTP Traversal Attack in earlier versions than ProSyst mBS SDK 8.2.6 and Bosch IoT Gateway Software 9.0.2 allows remote attackers to read files outside the http root.

  • CVE-2019-11602Aug 21, 2019
    risk 0.00cvss epss 0.01

    Leakage of stack traces in remote access to backup & restore in earlier versions than ProSyst mBS SDK 8.2.6 and Bosch IoT Gateway Software 9.2.0 allows remote attackers to gather information about the file system structure.

  • CVE-2019-11601Aug 21, 2019
    risk 0.00cvss epss 0.03

    A directory traversal vulnerability in remote access to backup & restore in earlier versions than ProSyst mBS SDK 8.2.6 and Bosch IoT Gateway Software 9.2.0 allows remote attackers to write or delete files at any location.

  • CVE-2019-11897Aug 21, 2019
    risk 0.00cvss epss 0.02

    A Server-Side Request Forgery (SSRF) vulnerability in the backup & restore functionality in earlier versions than ProSyst mBS SDK 8.2.6 and Bosch IoT Gateway Software 9.3.0 allows a remote attacker to forge GET requests to arbitrary URLs. In addition, this could potentially…