CVE-2020-6770

Published Feb 7, 2020

Last updated 5 years ago

Overview

Description: Deserialization of Untrusted Data in the BVMS Mobile Video Service (BVMS MVS) allows an unauthenticated remote attacker to execute arbitrary code on the system. This affects Bosch BVMS versions 10.0 <= 10.0.0.1225, 9.0 <= 9.0.0.827, 8.0 <= 8.0.0.329 and 7.5 and older. This affects Bosch DIVAR IP 3000 and DIVAR IP 7000 if a vulnerable BVMS version is installed.
Source: psirt@bosch.com
NVD status: Analyzed

Hype score: Not currently trending

Risk scores

CVSS 3.1

Type: Primary
Base score: 9.8
Impact score: 5.9
Exploitability score: 3.9
Vector string: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Severity: CRITICAL

CVSS 2.0

Type: Primary
Base score: 10
Impact score: 10
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:C/I:C/A:C

Weaknesses

nvd@nist.gov: CWE-502
psirt@bosch.com: CWE-502

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:bosch:bosch_video_management_system_mobile_video_service:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EC942683-9FC3-4C2B-9502-91B3DCBF94D7",
            "versionEndIncluding": "7.5"
          },
          {
            "criteria": "cpe:2.3:a:bosch:bosch_video_management_system_mobile_video_service:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BCDA17DC-C03A-4732-A00E-30DA535B2F42",
            "versionEndIncluding": "8.0.0.329",
            "versionStartIncluding": "8.0"
          },
          {
            "criteria": "cpe:2.3:a:bosch:bosch_video_management_system_mobile_video_service:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D1CDC5D3-12F9-4AEA-9396-7839405348C1",
            "versionEndIncluding": "9.0.0.827",
            "versionStartIncluding": "9.0"
          },
          {
            "criteria": "cpe:2.3:a:bosch:bosch_video_management_system_mobile_video_service:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4FE6B5DA-C720-4368-BFDB-B12626B23F25",
            "versionEndIncluding": "10.0.0.1225",
            "versionStartIncluding": "10.0"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:bosch:divar_ip_3000_firmware:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8C3A02A4-2AD4-45A8-AD9D-239A536A8D66"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:bosch:divar_ip_3000:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "F7EE760B-9B65-49A3-92E5-93880C58A628"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:bosch:divar_ip_7000_firmware:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7CCD42BE-E4B7-43FC-95FB-C97704E5C268"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:bosch:divar_ip_7000:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "10D23E90-110B-4ADC-8417-CD0149D126D2"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

Overview

Social media

Risk scores

CVSS 3.1

CVSS 2.0

Weaknesses

Configurations

References