Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Bosch — Vulnerabilities & Security Advisories 70

Browse all 70 CVE security advisories affecting Bosch. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Bosch operates as a global supplier of technology and services, primarily focusing on automotive components, industrial technology, consumer goods, and security systems. With seventy recorded Common Vulnerabilities and Exposures, the company’s attack surface is largely defined by its extensive Internet of Things (IoT) portfolio and embedded software infrastructure. Historically, disclosed flaws frequently involve remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from insecure default configurations or insufficient input validation within connected devices. These weaknesses pose significant risks to operational integrity, particularly in industrial control systems and smart home ecosystems. While no single catastrophic breach has dominated public discourse, the sheer volume of vulnerabilities highlights systemic challenges in securing diverse, legacy-integrated hardware. Security assessments emphasize the need for rigorous lifecycle management and continuous patching across its vast, interconnected product lines to mitigate potential exploitation vectors.

Top products by Bosch: BVMS Infotainment system ECU CPP Firmware Smart Home Controller PRA-ES8P2S AMS Camera Firmware DIVAR IP 3000 Video Recording Manager B426 Firmware BF-OS VIDEOJET multi 4000 Access Professional Edition FSM-2500 PRAESIDEO B420 BIS BCC101 Monitor Wall Network Synchronizer Enterprise Video Streaming Gateway Configuration Manager Video Client Smart Home Bosch Recording Station IP Helper DIVAR IP 2000 IoT Gateway Software
CVE IDTitleCVSSSeverityPublished
CVE-2020-6767 Path Traversal in Bosch Video Management System (BVMS) — DIVAR IP 3000CWE-22 7.7 High2020-02-06
CVE-2019-11899 Bosch Access Professional Edition 信息泄露漏洞 — Access Professional EditionCWE-284 7.5 -2019-09-12
CVE-2019-11898 Bosch Access Professional Edition 信任管理问题漏洞 — Access Professional EditionCWE-798 10.0 -2019-09-12
CVE-2019-11897 Server-side request forgery in the backup & restore functionality of ProSyst mBS SDK and Bosch IoT Gateway Software — IoT Gateway SoftwareCWE-918 7.5 -2019-08-21
CVE-2019-11896 Incorrect pviilege assignment in the 3rd party pairing mechanism of the Bosch Smart Home Controller (SHC) — Smart Home ControllerCWE-284 7.1 -2019-05-29
CVE-2019-11895 Improper access control in the JSON-RPC interface of the Bosch Smart Home Controller (SHC) — Smart Home ControllerCWE-284 4.8 -2019-05-29
CVE-2019-11894 Improper access control in the backup mechanism of the Bosch Smart Home Controller (SHC) — Smart Home ControllerCWE-284 6.5 -2019-05-29
CVE-2019-11893 Incorrect privilege assignment in the app permission update API of the Bosch Smart Home Controller (SHC) — Smart Home ControllerCWE-266 8.0 -2019-05-29
CVE-2019-11892 Improper access control in the JSON-RPC interface of the Bosch Smart Home Controller (SHC) — Smart Home ControllerCWE-284 8.0 -2019-05-29
CVE-2019-11891 Incorrect privilege assignment in the app pairing mechanism of the Bosch Smart Home Controller (SHC) — Smart Home ControllerCWE-266 8.0 -2019-05-29

This page lists every published CVE security advisory associated with Bosch. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.