High-Severity Flaws Uncovered in Bosch Thermostats and Smart Nutrunners

Rexroth NXA015S-36V-B smart nutrunners and Bosch BCC100 thermostats have been found to contain a number of security flaws that, if properly exploited, might let attackers run arbitrary code on the compromised devices.

The vulnerability in Bosch BCC100 thermostats was found by Romanian cybersecurity company Bitdefender in August of last year. Bitdefender stated that an attacker may use this vulnerability to modify the firmware of the device and install a rogue version.

Bosch fixed the high-severity issue, which was tracked as CVE-2023-49722 (CVSS score: 8.3), in November 2023.The BCC101, BCC102, and BCC50 thermostat products have a network port 8899 that is always accessible, allowing an unauthorized connection from a nearby WiFi network read more High Severity Flaws Uncovered in Bosch Thermostats and Smart Nutrunners.

Get up to date on the latest cybersecurity news and enhance your knowledge of cybersecurity with our thorough coverage of the dangers, breaches, and solutions.

Leave a Reply

Your email address will not be published. Required fields are marked *