Security
Headlines
HeadlinesLatestCVEs

Headline

CVE-2019-6958

A recently discovered security vulnerability affects all Bosch Video Management System (BVMS) versions 9.0 and below, DIVAR IP 2000, 3000, 5000 and 7000, Configuration Manager, Building Integration System (BIS) with Video Engine, Access Professional Edition (APE), Access Easy Controller (AEC), Bosch Video Client (BVC) and Video SDK (VSDK). The RCP+ network port allows access without authentication. Adding authentication feature to the respective library fixes the issue. The issue is classified as “CWE-284: Improper Access Control.” This vulnerability, for example, allows a potential attacker to delete video or read video data.

CVE
Open in Source
#vulnerability#pdf#auth

%PDF-1.7 %���� 376 0 obj <> endobj 407 0 obj <>/Filter/FlateDecode/ID[<7C7E4B83432A324AB3C261B31B80D8DE><76E672D1CF557A4E85476DAA7FF4A727>]/Index[376 57]/Info 375 0 R/Length 137/Prev 285617/Root 377 0 R/Size 433/Type/XRef/W[1 3 1]>>stream h�bbd```b``n��gA$��d�"��ٯ�j A$K<�����`vX�>Xd������K���`�,�"c��2���H��]��"�`�H2�]��U����’��9��00 �?����� endstream endobj startxref 0 %%EOF 432 0 obj <>stream h�b```b``�``e`�X� Ȁ�@16� s$?1�:00�� `@M<ͼ��a�ežb�Ƽ�m����s��y-�(T��:1N����� 0����np20�X�e�X,b tϹ�� f�(�Gp�`qd�e�t�VpK�`�������U�y,�)<X��`j�n�~x��� �{ ��O���R�9�.=) � /��Y S�4 ��)��``�H(=~�e` � Q˰�nl@Z��%�1D�1 �.�GW endstream endobj 377 0 obj <>/Metadata 17 0 R/OpenAction 378 0 R/Outlines 52 0 R/PageLayout/OneColumn/Pages 374 0 R/StructTreeRoot 373 0 R/Type/Catalog>> endobj 378 0 obj <> endobj 379 0 obj <>/ExtGState<>/Font<>/XObject<>>>/Rotate 0/StructParents 0/Tabs/S/Type/Page>> endobj 380 0 obj <>stream h��XYo�8�+�%A���|4��u�����FT[q�:�a�G��ΐ�"9v�6��. ���~3��X@Q,$\K�8#܇5�D2~Q ���W _ ��{�c@�>�4�$d(����Lk�p¹�D��$��B�a��&�C��A~���a )!�hCIF�U%9ў��k:��a�� [����99�� `�ɦ�,��0=��#� ��t�i���7��T:~X���|�]$�/�x�6����’��V��d1+&�G� ����"�Dv:L+PMZ� ^�f’h��2����2��|5KV��0�iTf7tHG�"������, /<�}�TB�\��r�eZ�ǫ$+ �їO%�~�f���n��e�c��qe���c"����DŽ���^\$38miR�")G�f�w�psf0d��E�6^����W�����3zv^q��ǘ�.�����3�f������mT�eB���˗V�d� s�9�`;i�pY��E�z8���O�!lp�\$��[f�[L�0�h4��"6��x9L��]I|��Ab%����G@�z��ɑ�i�"�1f���i|�.�=�tqh)�"�$0N��>�O蟿�Q�_:NRN�\��tmR��Q/�i7�/�� ��$l�P^��2_я�>4ͦ��Pd�)&�K��67���a4��ߎ�xI]f��6 Q�=�6�:H���x �^O��O�ܘ� D�Ef�?�!}�-L�B?�Iԁ k�����*KA(!2���a����:q�8qܧm�q��W�G��1�:�^^L����m:MHgE�������u����Q�:�r���X�`��`� ��B��|�fݬH��i�*����*7M0�L黸�B=�Է �y@�}@�mV��#@��h��6 ˕R��}!�o;��ǃ[ 0~���|C��m�D������T�AXs�] ����s’"`7m�����������тm4<��|���*��.�� ~�r ��=�]�

CVE: Latest News

CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda
CVE
CVE-2023-6905
CVE
CVE-2023-6903
CVE
CVE-2023-6904
CVE
CVE-2023-3907
CVE