Buffer Overflow Vulnerability in Bosch Smart Home Cameras
CVE-2018-20299

9.8CRITICAL

Key Information:

Vendor: Bosch
Status: 360-indoor Camera Firmware
Vendor: CVE Published:; 19 December 2018

What is CVE-2018-20299?

A security issue has been identified in several Bosch Smart Home camera models, specifically the 360-degree indoor camera and the Eyes outdoor camera, that may allow a malicious actor to execute arbitrary code via the network interface. This vulnerability stems from a buffer overflow in the RCP+ parser of the device's web server, which could be exploited when the device is running firmware versions prior to 6.52.4. Users are advised to update their firmware to mitigate this risk and ensure the security of their smart home environment.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

https://psirt.bosch.com/Advisory/BOSCH-2018-1203.html

x_refsource_MISC

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Dec 19, 2018

JSON

Bosch

What is CVE-2018-20299?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

References

CVSS V3.1

Timeline

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.