Uncontrolled Resource Consumption Vulnerability in Bosch VMS Central Server
CVE-2024-33618

7.5HIGH

Key Information:

Vendor: Bosch
Status: Bvms; Bvms Viewer; Bosch Divar Ip All-in-one 7000 R3; Bosch Divar Ip 7000 R2
Vendor: CVE Published:; 15 April 2026

What is CVE-2024-33618?

The vulnerability in Bosch VMS Central Server allows attackers to exploit uncontrolled resource consumption, leading to excessive disk space usage through the network interface. This could potentially disrupt normal operations and impact system performance, making it essential for users to assess their exposure and implement necessary security measures.

Affected Version(s)

Bosch DIVAR IP 7000 R2 9.0 <= 12.0.1

Bosch DIVAR IP all-in-one 5000 9.0 <= 12.0.1

Bosch DIVAR IP all-in-one 7000 6.0 <= 12.0.1

References

https://psirt.bosch.com/security-advisories/BOSCH-SA-1620...

vendor-advisory

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 15, 2026
Vulnerability Reserved
Jun 17, 2024

CVE-2024-33618 Data

JSON