Primary

Context

Bosch ctrlX OS Network Interfaces Vulnerability Allowing Unauthorized Network Configuration Manipulation

Vulnerability

A vulnerability exists in the Network Interfaces feature of the Bosch ctrlX OS web application. This issue allows remote authenticated (low-privileged) attackers to alter the network configuration file by sending a crafted HTTP request. The vulnerability arises from improper validation of input, enabling unauthorized modifications to network settings.

Impact

Exploitation of this vulnerability could lead to unauthorized changes in the network configuration, potentially disrupting network connectivity or causing misrouting of network traffic.

Remediation

Users are advised to update to the latest versions of the affected components. The update process may require a device reboot. To check if the update was successful, verify the installed version using the device's package management system.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

5.2

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

5.2

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Bosch ctrlX OS Network Interfaces Vulnerability Allowing Unauthorized Network Configuration Manipulation

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating