Vulnerability Description
Network port 8899 open in WiFi firmware of BCC101/BCC102/BCC50 products, that allows an attacker to connect to the device via same WiFi network.
CVSS Score
8.3
HIGH
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Bosch | Bcc101 Firmware | >= 4.13.20, < 4.13.33 |
| Bosch | Bcc101 | - |
| Bosch | Bcc102 Firmware | >= 4.13.20, < 4.13.33 |
| Bosch | Bcc102 | - |
| Bosch | Bcc50 Firmware | >= 4.13.20, < 4.13.33 |
| Bosch | Bcc50 | - |
Related Weaknesses (CWE)
References
- https://psirt.bosch.com/security-advisories/BOSCH-SA-473852.htmlVendor Advisory
- https://psirt.bosch.com/security-advisories/BOSCH-SA-473852.htmlVendor Advisory
FAQ
What is CVE-2023-49722?
CVE-2023-49722 is a vulnerability with a CVSS score of 8.3 (HIGH). Network port 8899 open in WiFi firmware of BCC101/BCC102/BCC50 products, that allows an attacker to connect to the device via same WiFi network.
How severe is CVE-2023-49722?
CVE-2023-49722 has been rated HIGH with a CVSS base score of 8.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2023-49722?
Check the references section above for vendor advisories and patch information. Affected products include: Bosch Bcc101 Firmware, Bosch Bcc101, Bosch Bcc102 Firmware, Bosch Bcc102, Bosch Bcc50 Firmware.