Possible Access to Debug Functions in Bosch VRM / BVMS

By executing a special command, an user with administrative rights can get access to extended debug functionality on the VRM allowing an impact on integrity or availability of the installed software. This issue also affects installations of the DIVAR IP and BVMS with VRM installed.

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H

遗留的调试代码

多款Bosch产品安全漏洞

Bosch Access Professional Edition等都是德国博世（Bosch）公司的产品。Bosch Access Professional Edition是一套企业访问控制和安防管理解决方案。Bosch VRM是一个应用软件。Bosch BVMS是一个应用系统。 Bosch 多款产品存在安全漏洞，攻击者可利用此漏洞通过执行特殊命令访问VRM上的扩展调试功能。

N/A

N/A