A command injection vulnerability exists in RTS VLink Virtual Matrix Software Versions v5 (< 5.7.6) and v6 (< 6.5.0) that allows an attacker to perform arbitrary code execution via the admin web interface.
References
Link | Resource |
---|---|
https://psirt.bosch.com/security-advisories/BOSCH-SA-893251-BT.html | Patch Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
19 Sep 2023, 21:23
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-77 | |
First Time |
Bosch
Bosch rts Vlink Virtual Matrix |
|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.2 |
CPE | cpe:2.3:a:bosch:rts_vlink_virtual_matrix:*:*:*:*:*:*:*:* | |
References | (MISC) https://psirt.bosch.com/security-advisories/BOSCH-SA-893251-BT.html - Patch, Vendor Advisory |
18 Sep 2023, 13:26
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-09-18 11:15
Updated : 2024-02-28 20:33
NVD link : CVE-2023-34999
Mitre link : CVE-2023-34999
CVE.ORG link : CVE-2023-34999
JSON object : View
Products Affected
bosch
- rts_vlink_virtual_matrix