CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-23863

HTML code injection vulnerability in Android Application, Bosch Video Security, version 3.2.3. or earlier, when successfully exploited allows an attacker to inject random HTML code into a component loaded by WebView, thus allowing the Application to display web resources controlled by the attacker.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 48.4%

CVSS Severity

CVSS v3 Score 6.1

CVSS v2 Score 4.3

References

https://psirt.bosch.com/security-advisories/bosch-sa-844050.html
https://psirt.bosch.com/security-advisories/bosch-sa-844050-bt.html
https://psirt.bosch.com/security-advisories/bosch-sa-844050.html

Products affected by CVE-2021-23863

Bosch » Video Security » Version: N/A

cpe:2.3:a:bosch:video_security:-
Bosch » Video Security » Version: 3.2.3

cpe:2.3:a:bosch:video_security:3.2.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-23863

Products

Pricing

Contact Us