Deserialization of Untrusted Data in Bosch BVMS Mobile Video Service


2020-01-29 00:00:00 UTC


BOSCH-SA-885551-BT: A recently discovered security vulnerability affects the BVMS Mobile Video Service (BVMS MVS). The vulnerability is exploitable via the network interface. Bosch rates this vulnerability with a CVSS v3.1 Base Score of 10.0 (Critical) and recommends customers to update the vulnerable components with fixed software versions. The vulnerability was discovered during internal product tests.