CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-23848

An error in the URL handler Bosch IP cameras may lead to a reflected cross site scripting (XSS) in the web-based interface. An attacker with knowledge of the camera address can send a crafted link to a user, which will execute javascript code in the context of the user.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 59.4%

CVSS Severity

CVSS v3 Score 8.3

CVSS v2 Score 4.3

References

Products affected by CVE-2021-23848

Bosch » Cpp13 » Version: N/A

cpe:2.3:h:bosch:cpp13:-
Bosch » Cpp4 » Version: N/A

cpe:2.3:h:bosch:cpp4:-
Bosch » Cpp6 » Version: N/A

cpe:2.3:h:bosch:cpp6:-
Bosch » Cpp7.3 » Version: N/A

cpe:2.3:h:bosch:cpp7.3:-
Bosch » Cpp7 » Version: N/A

cpe:2.3:h:bosch:cpp7:-
Bosch » Cpp13 Firmware » Version: N/A

cpe:2.3:o:bosch:cpp13_firmware:-
Bosch » Cpp4 Firmware » Version: N/A

cpe:2.3:o:bosch:cpp4_firmware:-
Bosch » Cpp6 Firmware » Version: N/A

cpe:2.3:o:bosch:cpp6_firmware:-
Bosch » Cpp7.3 Firmware » Version: N/A

cpe:2.3:o:bosch:cpp7.3_firmware:-
Bosch » Cpp7 Firmware » Version: N/A

cpe:2.3:o:bosch:cpp7_firmware:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-23848

Products

Pricing

Contact Us