PT-2019-12408 · Prosyst+1 · Prosyst Mbs Sdk+1
Philip Kazmeier
·
Published
2019-08-21
·
Updated
2023-02-02
·
CVE-2019-11601
CVSS v3.1
9.1
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
ProSyst mBS SDK versions prior to 8.2.6
Bosch IoT Gateway Software versions prior to 9.2.0
Description
A directory traversal issue exists in the remote access to backup and restore functionality, allowing remote attackers to write or delete files at any location.
Recommendations
For ProSyst mBS SDK versions prior to 8.2.6, update to version 8.2.6 or later to resolve the issue.
For Bosch IoT Gateway Software versions prior to 9.2.0, update to version 9.2.0 or later to resolve the issue.
Fix
Path traversal
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Bosch Iot Gateway
Prosyst Mbs Sdk