VYPR

Configuration Manager

by Bosch

CVEs (2)

  • CVE-2023-35867Dec 18, 2023
    risk 0.00cvss epss 0.01

    An improper handling of a malformed API answer packets to API clients in Bosch BT software products can allow an unauthenticated attacker to cause a Denial of Service (DoS) situation. To exploit this vulnerability an attacker has to replace an existing API server e.g. through…

  • CVE-2020-6788Mar 25, 2021
    risk 0.00cvss epss 0.00

    Loading a DLL through an Uncontrolled Search Path Element in the Bosch Configuration Manager installer up to and including version 7.21.0078 potentially allows an attacker to execute arbitrary code on a victim's system. A prerequisite is that the victim is tricked into placing a…