Oleksii Orekhov

**Name of the Vulnerable Software and Affected Versions** Bosch Access Professional Edition (APE) versions prior to 3.8 **Description** The issue allows unauthorized APE administration privileges to be obtained through reverse engineering of a discontinued APE service tool. **Recommendations** For versions prior to 3.8, update to version 3.8 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Bosch Access Professional Edition (APE) version 3.8 **Description** An unauthenticated attacker can gain unauthorized access to sensitive data by exploiting the Windows SMB protocol on a client installation. Client installations require authorization by the APE administrator. **Recommendations** For Bosch Access Professional Edition (APE) version 3.8, ensure that all client installations are properly authorized by the APE administrator to prevent unauthorized access.