CVE-2023-39509

Summary

A command injection vulnerability exists in Bosch IP cameras that allows an authenticated user with administrative rights to run arbitrary commands on the OS of the camera.

Affected Software

VendorProductVersion RangeStatus
BoschCamera Firmware0 <= 8.90affected
BoschCamera Firmware8.20 <= 8.81affected

Weaknesses

  • CWE-20: CWE-20 Improper Input Validation

ADP Enrichment

CVE Program Container

Additional References

References