CVE-2022-36301

Summary

BF-OS version 3.x up to and including 3.83 do not enforce strong passwords which may allow a remote attacker to brute-force the device password.

Affected Software

VendorProductVersion RangeStatus
BoschBF-OS3.0 <= 3.83affected
BoschBF-OS3.0 <= 3.83affected
BoschBF-OS3.0 <= 3.83affected

Weaknesses

  • CWE-521: CWE-521 Weak Password Requirements

ADP Enrichment

CVE Program Container

Additional References

References