PT-2019-12408 · Prosyst+1 · Prosyst Mbs Sdk+1

Philip Kazmeier

Publicado

2019-08-21

Atualizado

2023-02-02

CVE-2019-11601

CVSS v3.1

9.1

Crítica

Vetor

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

Name of the Vulnerable Software and Affected Versions ProSyst mBS SDK versions prior to 8.2.6 Bosch IoT Gateway Software versions prior to 9.2.0

Description A directory traversal issue exists in the remote access to backup and restore functionality, allowing remote attackers to write or delete files at any location.

Recommendations For ProSyst mBS SDK versions prior to 8.2.6, update to version 8.2.6 or later to resolve the issue. For Bosch IoT Gateway Software versions prior to 9.2.0, update to version 9.2.0 or later to resolve the issue.

Correção

Path traversal

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-22

Identificadores relacionados

CVE-2019-11601

Produtos afetados

Bosch Iot Gateway

Prosyst Mbs Sdk

PT-2019-12408 · Prosyst+1 · Prosyst Mbs Sdk+1

CVE-2019-11601

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 3