CVE-2020-6768

A path traversal vulnerability in the Bosch Video Management System (BVMS) NoTouch deployment allows an unauthenticated remote attacker to read arbitrary files from the Central Server. This affects Bosch BVMS versions 10.0 <= 10.0.0.1225, 9.0 <= 9.0.0.827, 8.0 <= 8.0.329 and 7.5 and older. This affects Bosch BVMS Viewer versions 10.0 <= 10.0.0.1225, 9.0 <= 9.0.0.827, 8.0 <= 8.0.329 and 7.5 and older. This affects Bosch DIVAR IP 3000, DIVAR IP 7000 and DIVAR IP all-in-one 5000 if a vulnerable BVMS version is installed.
Path Traversal
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
8.6 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N
boschCNA
8.6 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 80%
VendorProductVersion
boschvideo_management_system_viewer
𝑥
≤ 7.5
boschvideo_management_system_viewer
8.0 ≤
𝑥
≤ 8.0.329
boschvideo_management_system_viewer
9.0 ≤
𝑥
≤ 9.0.0.827
boschvideo_management_system_viewer
10.0 ≤
𝑥
≤ 10.0.0.1225
boschvideo_management_system
𝑥
≤ 7.5
boschvideo_management_system
8.0 ≤
𝑥
≤ 8.0.0.329
boschvideo_management_system
9.0 ≤
𝑥
≤ 9.0.0.827
boschvideo_management_system
10.0 ≤
𝑥
≤ 10.0.0.1225
boschvideo_management_system
𝑥
≤ 7.5
boschvideo_management_system
8.0 ≤
𝑥
≤ 8.0.0.329
boschvideo_management_system
9.0 ≤
𝑥
≤ 9.0.0.827
boschvideo_management_system
10.0 ≤
𝑥
≤ 10.0.0.1225
boschvideo_management_system
𝑥
≤ 7.5
boschvideo_management_system
8.0 ≤
𝑥
≤ 8.0.0.329
boschvideo_management_system
9.0 ≤
𝑥
≤ 9.0.0.827
boschvideo_management_system
10.0 ≤
𝑥
≤ 10.0.0.1225
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://psirt.bosch.com/security-advisories/bosch-sa-815013-bt.html
https://psirt.bosch.com/security-advisories/bosch-sa-815013-bt.html