Browse all 35 CVE security advisories affecting Rexroth. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Bosch Rexroth provides industrial automation solutions, including hydraulic and electric drive systems, PLCs, and motion control technologies essential for manufacturing and machinery operations. Security assessments have identified thirty-five CVEs associated with its product portfolio, primarily affecting embedded controllers and networked industrial components. Historically, common vulnerability classes include remote code execution, buffer overflows, and improper access control mechanisms that may allow privilege escalation. These flaws often stem from legacy protocols or insufficient input validation in older firmware versions. While no single catastrophic public incident has defined the brand’s security history, the accumulation of critical vulnerabilities highlights risks in maintaining legacy industrial infrastructure. The company generally issues patches through standard update channels, though the complexity of OT environments can delay remediation. Organizations utilizing Rexroth systems must prioritize network segmentation and regular firmware updates to mitigate exposure to these known exploitation vectors.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2023-45844 | Bosch ctrlX HMI Web Panel WR21 安全漏洞 — ctrlX HMI Web Panel - WR21 (WR2107)CWE-284 | 6.7 | - | 2023-10-25 |
| CVE-2021-23857 | Login with hash — IndraMotion MLC L25, L45, L65, L75, L85, XM21, XM22, XM41 and XM42 IndraMotion XLCCWE-836 | 10.0 | Critical | 2021-10-04 |
| CVE-2021-23855 | Information disclosure — IndraMotion MLC IndraMotion XLCCWE-200 | 8.6 | High | 2021-10-04 |
| CVE-2021-23858 | Information disclosure — IndraMotion MLC L25, L45, L65, L75, L85, XM21, XM22, XM41 and XM42 IndraControl XLCCWE-200 | 8.6 | High | 2021-10-04 |
| CVE-2021-23856 | Reflected Cross-Site-Scripting — IndraMotion MLC L20, L40CWE-79 | 10.0 | Critical | 2021-10-04 |
This page lists every published CVE security advisory associated with Rexroth. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.