CVE-2018-20299 - Vulnerability Details - OpenCVE

An issue was discovered in several Bosch Smart Home cameras (360 degree indoor camera and Eyes outdoor camera) with firmware before 6.52.4. A malicious client could potentially succeed in the unauthorized execution of code on the device via the network interface, because there is a buffer overflow in the RCP+ parser of the web server.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Bosch	360-indoor Camera 360-indoor Camera Firmware Eyes Outdoor Camera Eyes Outdoor Camera Firmware

Configuration 1 [-]

AND

cpe:2.3:o:bosch:360-indoor_camera_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:bosch:360-indoor_camera:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND

cpe:2.3:o:bosch:eyes_outdoor_camera_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:bosch:eyes_outdoor_camera:-:*:*:*:*:*:*:*

No data.

References

Link	Providers
https://psirt.bosch.com/Advisory/BOSCH-2018-1203.html

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2018-12-19T22:00:00Z

Updated: 2024-09-16T20:59:08.208Z

Reserved: 2018-12-19T00:00:00Z

Link: CVE-2018-20299

Vulnrichment

No data.

NVD

Status : Modified

Published: 2018-12-19T22:29:00.623

Modified: 2024-11-21T04:01:10.850

Link: CVE-2018-20299

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "descriptions": [{"lang": "en", "value": "An issue was discovered in several Bosch Smart Home cameras (360 degree indoor camera and Eyes outdoor camera) with firmware before 6.52.4. A malicious client could potentially succeed in the unauthorized execution of code on the device via the network interface, because there is a buffer overflow in the RCP+ parser of the web server."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-12-19T22:00:00Z", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://psirt.bosch.com/Advisory/BOSCH-2018-1203.html"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2018-20299", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "An issue was discovered in several Bosch Smart Home cameras (360 degree indoor camera and Eyes outdoor camera) with firmware before 6.52.4. A malicious client could potentially succeed in the unauthorized execution of code on the device via the network interface, because there is a buffer overflow in the RCP+ parser of the web server."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "https://psirt.bosch.com/Advisory/BOSCH-2018-1203.html", "refsource": "MISC", "url": "https://psirt.bosch.com/Advisory/BOSCH-2018-1203.html"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-05T11:58:19.160Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://psirt.bosch.com/Advisory/BOSCH-2018-1203.html"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2018-20299", "datePublished": "2018-12-19T22:00:00Z", "dateReserved": "2018-12-19T00:00:00Z", "dateUpdated": "2024-09-16T20:59:08.208Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:bosch:360-indoor_camera_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "A69F7A23-25C8-465A-ACA0-83774EADE576", "versionEndExcluding": "6.52.4", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:bosch:360-indoor_camera:-:*:*:*:*:*:*:*", "matchCriteriaId": "F260EAB7-1204-47A8-B1AD-6901CBF04E33", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:bosch:eyes_outdoor_camera_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "9D691E70-B0A0-44D2-AF48-0548FFBAC685", "versionEndExcluding": "6.52.4", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:bosch:eyes_outdoor_camera:-:*:*:*:*:*:*:*", "matchCriteriaId": "62565DA0-E37C-44D7-ABE7-3A3866849C56", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "descriptions": [{"lang": "en", "value": "An issue was discovered in several Bosch Smart Home cameras (360 degree indoor camera and Eyes outdoor camera) with firmware before 6.52.4. A malicious client could potentially succeed in the unauthorized execution of code on the device via the network interface, because there is a buffer overflow in the RCP+ parser of the web server."}, {"lang": "es", "value": "Se ha descubierto un problema en varias c\u00e1maras Bosch Smart Home (c\u00e1mara 360 grados de interior y c\u00e1mara exterior Eyes) con firmware en versiones anteriores a la 6.52.4. Un cliente malicioso podr\u00eda tener \u00e9xito a la hora de ejecutar de forma no autorizada c\u00f3digo en el dispositivo mediante la interfaz de red, ya que hay un desbordamiento de b\u00fafer en el analizador RCP+ del servidor web."}], "id": "CVE-2018-20299", "lastModified": "2024-11-21T04:01:10.850", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 7.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2018-12-19T22:29:00.623", "references": [{"source": "cve@mitre.org", "tags": ["Mitigation", "Vendor Advisory"], "url": "https://psirt.bosch.com/Advisory/BOSCH-2018-1203.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mitigation", "Vendor Advisory"], "url": "https://psirt.bosch.com/Advisory/BOSCH-2018-1203.html"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-119"}], "source": "nvd@nist.gov", "type": "Primary"}]}