Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Incorrect pviilege assignment in the 3rd party pairing mechanism of the Bosch Smart Home Controller (SHC)
Vulnerability Description
A potential incorrect privilege assignment vulnerability exists in the 3rd party pairing mechanism of the Bosch Smart Home Controller (SHC) before 9.8.907 that may result in a restricted app obtaining default app permissions. In order to exploit the vulnerability, the adversary needs to have successfully paired an app, which requires user interaction.
CVSS Information
N/A
Vulnerability Type
访问控制不恰当
Vulnerability Title
Bosch Smart Home Controller 授权问题漏洞
Vulnerability Description
Bosch Smart Home Controller(SHC)是德国博世(Bosch)公司的一款智能家居控制设备。 Bosch SHC 9.8.907之前版本中的第三方配对机制存在安全漏洞。攻击者可通过配对应用程序利用该漏洞获取默认的应用程序权限。
CVSS Information
N/A
Vulnerability Type
N/A