Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Unauthenticated Information Extraction Vulnerability
Vulnerability Description
A Missing Authentication in Critical Function in Bosch IP cameras allows an unauthenticated remote attacker to extract sensitive information or change settings of the camera by sending crafted requests to the device. Only devices of the CPP6, CPP7 and CPP7.3 family with firmware 7.70, 7.72, and 7.80 prior to B128 are affected by this vulnerability. Versions 7.62 or lower and INTEOX cameras are not affected.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
认证机制不恰当
Vulnerability Title
Bosch IP cameras 访问控制错误漏洞
Vulnerability Description
Bosch IP cameras是德国(Bosch)的网络相机 Bosch IP摄像机存在安全漏洞,该漏洞源于摄像机的关键功能中缺少身份验证,该漏洞允许未经身份验证的远程攻击者通过向设备发送精心制作的请求来提取敏感信息或更改摄像头设置。以下产品和版本受到影响:B128 之前的 7.70、7.72 和 7.80 的 CPP6、CPP7 和 CPP7.3 系列设备。
CVSS Information
N/A
Vulnerability Type
N/A