Bosch Smart Home Controller before 9.8.905 Remote Code Execution Vulnerability

Summary

A potential improper access control vulnerability exists in the backup mechanism of the Bosch Smart Home Controller (SHC) before 9.8.905 that may result in unauthorized download of a backup. In order to exploit the vulnerability, the adversary needs to download the backup directly after a backup triggered by a legitimate user has been completed.

Credit:

The information has been provided by Bosch
The original article can be found at: https://psirt.bosch.com/Advisory/BOSCH-SA-662084.html


Details

The vulnerability may result in an unauthorized download of a backup. In order to exploit the vulnerability, the adversary needs to download the backup directly after a backup triggered by a legitimate user has been completed, which requires user interaction.

Vulnerable Systems:

  • Bosch Smart Home Controller  before 9.8.905

    CVE Information:
    CVE-2019-11894

    Disclosure Timeline:
    Publish Date:05/29/2019