CVE-2023-48265 - Vulnerability Details

Vendors	Products
Bosch	Nexo-os Nexo Cordless Nutrunner Nxa011s-36v-b \(0608842012\) Nexo Cordless Nutrunner Nxa011s-36v \(0608842011\) Nexo Cordless Nutrunner Nxa015s-36v-b \(0608842006\) Nexo Cordless Nutrunner Nxa015s-36v \(0608842001\) Nexo Cordless Nutrunner Nxa030s-36v-b \(0608842007\) Nexo Cordless Nutrunner Nxa030s-36v \(0608842002\) Nexo Cordless Nutrunner Nxa050s-36v-b \(0608842008\) Nexo Cordless Nutrunner Nxa050s-36v \(0608842003\) Nexo Cordless Nutrunner Nxa065s-36v-b \(0608842014\) Nexo Cordless Nutrunner Nxa065s-36v \(0608842013\) Nexo Cordless Nutrunner Nxp012qd-36v-b \(0608842010\) Nexo Cordless Nutrunner Nxp012qd-36v \(0608842005\) Nexo Cordless Nutrunner Nxv012t-36v-b \(0608842016\) Nexo Cordless Nutrunner Nxv012t-36v \(0608842015\) Nexo Special Cordless Nutrunner \(0608pe2272\) Nexo Special Cordless Nutrunner \(0608pe2301\) Nexo Special Cordless Nutrunner \(0608pe2514\) Nexo Special Cordless Nutrunner \(0608pe2515\) Nexo Special Cordless Nutrunner \(0608pe2666\) Nexo Special Cordless Nutrunner \(0608pe2673\)

Link	Providers
https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html

Show plain JSON

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2023-48265", "assignerOrgId": "c95f66b2-7e7c-41c5-8f09-6f86ec68659c", "state": "PUBLISHED", "assignerShortName": "bosch", "dateReserved": "2023-11-13T13:44:23.708Z", "datePublished": "2024-01-10T13:09:46.605Z", "dateUpdated": "2024-08-02T21:23:39.430Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "c95f66b2-7e7c-41c5-8f09-6f86ec68659c", "shortName": "bosch", "dateUpdated": "2024-01-10T13:09:46.605Z"}, "descriptions": [{"lang": "en", "value": "The vulnerability allows an unauthenticated remote attacker to perform a Denial-of-Service (DoS) attack or, possibly, obtain Remote Code Execution (RCE) via a crafted network request."}], "affected": [{"vendor": "Rexroth", "product": "Nexo cordless nutrunner NXA015S-36V (0608842001)", "versions": [{"version": "NEXO-OS V1000-Release", "status": "affected", "versionType": "custom", "lessThanOrEqual": "NEXO-OS V1500-SP2"}]}, {"vendor": "Rexroth", "product": "Nexo cordless nutrunner NXA030S-36V (0608842002)", "versions": [{"version": "NEXO-OS V1000-Release", "status": "affected", "versionType": "custom", "lessThanOrEqual": "NEXO-OS V1500-SP2"}]}, {"vendor": "Rexroth", "product": "Nexo cordless nutrunner NXA050S-36V (0608842003)", "versions": [{"version": "NEXO-OS V1000-Release", "status": "affected", "versionType": "custom", "lessThanOrEqual": "NEXO-OS V1500-SP2"}]}, {"vendor": "Rexroth", "product": "Nexo cordless nutrunner NXP012QD-36V (0608842005)", "versions": [{"version": "NEXO-OS V1000-Release", "status": "affected", "versionType": "custom", "lessThanOrEqual": "NEXO-OS V1500-SP2"}]}, {"vendor": "Rexroth", "product": "Nexo cordless nutrunner NXA015S-36V-B (0608842006)", "versions": [{"version": "NEXO-OS V1000-Release", "status": "affected", "versionType": "custom", "lessThanOrEqual": "NEXO-OS V1500-SP2"}]}, {"vendor": "Rexroth", "product": "Nexo cordless nutrunner NXA030S-36V-B (0608842007)", "versions": [{"version": "NEXO-OS V1000-Release", "status": "affected", "versionType": "custom", "lessThanOrEqual": "NEXO-OS V1500-SP2"}]}, {"vendor": "Rexroth", "product": "Nexo cordless nutrunner NXA050S-36V-B (0608842008)", "versions": [{"version": "NEXO-OS V1000-Release", "status": "affected", "versionType": "custom", "lessThanOrEqual": "NEXO-OS V1500-SP2"}]}, {"vendor": "Rexroth", "product": "Nexo cordless nutrunner NXP012QD-36V-B (0608842010)", "versions": [{"version": "NEXO-OS V1000-Release", "status": "affected", "versionType": "custom", "lessThanOrEqual": "NEXO-OS V1500-SP2"}]}, {"vendor": "Rexroth", "product": "Nexo cordless nutrunner NXA011S-36V (0608842011)", "versions": [{"version": "NEXO-OS V1000-Release", "status": "affected", "versionType": "custom", "lessThanOrEqual": "NEXO-OS V1500-SP2"}]}, {"vendor": "Rexroth", "product": "Nexo cordless nutrunner NXA011S-36V-B (0608842012)", "versions": [{"version": "NEXO-OS V1000-Release", "status": "affected", "versionType": "custom", "lessThanOrEqual": "NEXO-OS V1500-SP2"}]}, {"vendor": "Rexroth", "product": "Nexo cordless nutrunner NXA065S-36V (0608842013)", "versions": [{"version": "NEXO-OS V1000-Release", "status": "affected", "versionType": "custom", "lessThanOrEqual": "NEXO-OS V1500-SP2"}]}, {"vendor": "Rexroth", "product": "Nexo cordless nutrunner NXA065S-36V-B (0608842014)", "versions": [{"version": "NEXO-OS V1000-Release", "status": "affected", "versionType": "custom", "lessThanOrEqual": "NEXO-OS V1500-SP2"}]}, {"vendor": "Rexroth", "product": "Nexo cordless nutrunner NXV012T-36V (0608842015)", "versions": [{"version": "NEXO-OS V1000-Release", "status": "affected", "versionType": "custom", "lessThanOrEqual": "NEXO-OS V1500-SP2"}]}, {"vendor": "Rexroth", "product": "Nexo cordless nutrunner NXV012T-36V-B (0608842016)", "versions": [{"version": "NEXO-OS V1000-Release", "status": "affected", "versionType": "custom", "lessThanOrEqual": "NEXO-OS V1500-SP2"}]}, {"vendor": "Rexroth", "product": "Nexo special cordless nutrunner (0608PE2272)", "versions": [{"version": "NEXO-OS V1000-Release", "status": "affected", "versionType": "custom", "lessThanOrEqual": "NEXO-OS V1500-SP2"}]}, {"vendor": "Rexroth", "product": "Nexo special cordless nutrunner (0608PE2301)", "versions": [{"version": "NEXO-OS V1000-Release", "status": "affected", "versionType": "custom", "lessThanOrEqual": "NEXO-OS V1500-SP2"}]}, {"vendor": "Rexroth", "product": "Nexo special cordless nutrunner (0608PE2514)", "versions": [{"version": "NEXO-OS V1000-Release", "status": "affected", "versionType": "custom", "lessThanOrEqual": "NEXO-OS V1500-SP2"}]}, {"vendor": "Rexroth", "product": "Nexo special cordless nutrunner (0608PE2515)", "versions": [{"version": "NEXO-OS V1000-Release", "status": "affected", "versionType": "custom", "lessThanOrEqual": "NEXO-OS V1500-SP2"}]}, {"vendor": "Rexroth", "product": "Nexo special cordless nutrunner (0608PE2666)", "versions": [{"version": "NEXO-OS V1000-Release", "status": "affected", "versionType": "custom", "lessThanOrEqual": "NEXO-OS V1500-SP2"}]}, {"vendor": "Rexroth", "product": "Nexo special cordless nutrunner (0608PE2673)", "versions": [{"version": "NEXO-OS V1000-Release", "status": "affected", "versionType": "custom", "lessThanOrEqual": "NEXO-OS V1500-SP2"}]}], "problemTypes": [{"descriptions": [{"lang": "en-US", "description": "CWE-121 Stack-based Buffer Overflow", "cweId": "CWE-121"}]}], "references": [{"url": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html", "name": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html", "tags": ["vendor-advisory"]}], "metrics": [{"cvssV3_1": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", "attackVector": "NETWORK", "attackComplexity": "HIGH", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH", "baseScore": 8.1, "baseSeverity": "HIGH"}}]}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T21:23:39.430Z"}, "title": "CVE Program Container", "references": [{"url": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html", "name": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html", "tags": ["vendor-advisory", "x_transferred"]}]}]}}

{

dataType : CVE_RECORD (string)

dataVersion : 5.1 (string)

cveMetadata : { »

cveId : CVE-2023-48265 (string)

assignerOrgId : c95f66b2-7e7c-41c5-8f09-6f86ec68659c (string)

state : PUBLISHED (string)

assignerShortName : bosch (string)

dateReserved : 2023-11-13T13:44:23.708Z (string)

datePublished : 2024-01-10T13:09:46.605Z (string)

dateUpdated : 2024-08-02T21:23:39.430Z (string)

}

containers : { »

cna : { »

providerMetadata : { »

orgId : c95f66b2-7e7c-41c5-8f09-6f86ec68659c (string)

shortName : bosch (string)

dateUpdated : 2024-01-10T13:09:46.605Z (string)

}

descriptions : [ »

0 : { »

lang : en (string)

value : The vulnerability allows an unauthenticated remote attacker to perform a Denial-of-Service (DoS) attack or, possibly, obtain Remote Code Execution (RCE) via a crafted network request. (string)

}

]

affected : [ »

0 : { »

vendor : Rexroth (string)

product : Nexo cordless nutrunner NXA015S-36V (0608842001) (string)

versions : [ »

0 : { »

version : NEXO-OS V1000-Release (string)

status : affected (string)

versionType : custom (string)

lessThanOrEqual : NEXO-OS V1500-SP2 (string)

}

]

}

1 : { »

vendor : Rexroth (string)

product : Nexo cordless nutrunner NXA030S-36V (0608842002) (string)

versions : [ »

0 : { »

version : NEXO-OS V1000-Release (string)

status : affected (string)

versionType : custom (string)

lessThanOrEqual : NEXO-OS V1500-SP2 (string)

}

]

}

2 : { »

vendor : Rexroth (string)

product : Nexo cordless nutrunner NXA050S-36V (0608842003) (string)

versions : [ »

0 : { »

version : NEXO-OS V1000-Release (string)

status : affected (string)

versionType : custom (string)

lessThanOrEqual : NEXO-OS V1500-SP2 (string)

}

]

}

3 : { »

vendor : Rexroth (string)

product : Nexo cordless nutrunner NXP012QD-36V (0608842005) (string)

versions : [ »

0 : { »

version : NEXO-OS V1000-Release (string)

status : affected (string)

versionType : custom (string)

lessThanOrEqual : NEXO-OS V1500-SP2 (string)

}

]

}

4 : { »

vendor : Rexroth (string)

product : Nexo cordless nutrunner NXA015S-36V-B (0608842006) (string)

versions : [ »

0 : { »

version : NEXO-OS V1000-Release (string)

status : affected (string)

versionType : custom (string)

lessThanOrEqual : NEXO-OS V1500-SP2 (string)

}

]

}

5 : { »

vendor : Rexroth (string)

product : Nexo cordless nutrunner NXA030S-36V-B (0608842007) (string)

versions : [ »

0 : { »

version : NEXO-OS V1000-Release (string)

status : affected (string)

versionType : custom (string)

lessThanOrEqual : NEXO-OS V1500-SP2 (string)

}

]

}

6 : { »

vendor : Rexroth (string)

product : Nexo cordless nutrunner NXA050S-36V-B (0608842008) (string)

versions : [ »

0 : { »

version : NEXO-OS V1000-Release (string)

status : affected (string)

versionType : custom (string)

lessThanOrEqual : NEXO-OS V1500-SP2 (string)

}

]

}

7 : { »

vendor : Rexroth (string)

product : Nexo cordless nutrunner NXP012QD-36V-B (0608842010) (string)

versions : [ »

0 : { »

version : NEXO-OS V1000-Release (string)

status : affected (string)

versionType : custom (string)

lessThanOrEqual : NEXO-OS V1500-SP2 (string)

}

]

}

8 : { »

vendor : Rexroth (string)

product : Nexo cordless nutrunner NXA011S-36V (0608842011) (string)

versions : [ »

0 : { »

version : NEXO-OS V1000-Release (string)

status : affected (string)

versionType : custom (string)

lessThanOrEqual : NEXO-OS V1500-SP2 (string)

}

]

}

9 : { »

vendor : Rexroth (string)

product : Nexo cordless nutrunner NXA011S-36V-B (0608842012) (string)

versions : [ »

0 : { »

version : NEXO-OS V1000-Release (string)

status : affected (string)

versionType : custom (string)

lessThanOrEqual : NEXO-OS V1500-SP2 (string)

}

]

}

10 : { »

vendor : Rexroth (string)

product : Nexo cordless nutrunner NXA065S-36V (0608842013) (string)

versions : [ »

0 : { »

version : NEXO-OS V1000-Release (string)

status : affected (string)

versionType : custom (string)

lessThanOrEqual : NEXO-OS V1500-SP2 (string)

}

]

}

11 : { »

vendor : Rexroth (string)

product : Nexo cordless nutrunner NXA065S-36V-B (0608842014) (string)

versions : [ »

0 : { »

version : NEXO-OS V1000-Release (string)

status : affected (string)

versionType : custom (string)

lessThanOrEqual : NEXO-OS V1500-SP2 (string)

}

]

}

12 : { »

vendor : Rexroth (string)

product : Nexo cordless nutrunner NXV012T-36V (0608842015) (string)

versions : [ »

0 : { »

version : NEXO-OS V1000-Release (string)

status : affected (string)

versionType : custom (string)

lessThanOrEqual : NEXO-OS V1500-SP2 (string)

}

]

}

13 : { »

vendor : Rexroth (string)

product : Nexo cordless nutrunner NXV012T-36V-B (0608842016) (string)

versions : [ »

0 : { »

version : NEXO-OS V1000-Release (string)

status : affected (string)

versionType : custom (string)

lessThanOrEqual : NEXO-OS V1500-SP2 (string)

}

]

}

14 : { »

vendor : Rexroth (string)

product : Nexo special cordless nutrunner (0608PE2272) (string)

versions : [ »

0 : { »

version : NEXO-OS V1000-Release (string)

status : affected (string)

versionType : custom (string)

lessThanOrEqual : NEXO-OS V1500-SP2 (string)

}

]

}

15 : { »

vendor : Rexroth (string)

product : Nexo special cordless nutrunner (0608PE2301) (string)

versions : [ »

0 : { »

version : NEXO-OS V1000-Release (string)

status : affected (string)

versionType : custom (string)

lessThanOrEqual : NEXO-OS V1500-SP2 (string)

}

]

}

16 : { »

vendor : Rexroth (string)

product : Nexo special cordless nutrunner (0608PE2514) (string)

versions : [ »

0 : { »

version : NEXO-OS V1000-Release (string)

status : affected (string)

versionType : custom (string)

lessThanOrEqual : NEXO-OS V1500-SP2 (string)

}

]

}

17 : { »

vendor : Rexroth (string)

product : Nexo special cordless nutrunner (0608PE2515) (string)

versions : [ »

0 : { »

version : NEXO-OS V1000-Release (string)

status : affected (string)

versionType : custom (string)

lessThanOrEqual : NEXO-OS V1500-SP2 (string)

}

]

}

18 : { »

vendor : Rexroth (string)

product : Nexo special cordless nutrunner (0608PE2666) (string)

versions : [ »

0 : { »

version : NEXO-OS V1000-Release (string)

status : affected (string)

versionType : custom (string)

lessThanOrEqual : NEXO-OS V1500-SP2 (string)

}

]

}

19 : { »

vendor : Rexroth (string)

product : Nexo special cordless nutrunner (0608PE2673) (string)

versions : [ »

0 : { »

version : NEXO-OS V1000-Release (string)

status : affected (string)

versionType : custom (string)

lessThanOrEqual : NEXO-OS V1500-SP2 (string)

}

]

}

]

problemTypes : [ »

0 : { »

descriptions : [ »

0 : { »

lang : en-US (string)

description : CWE-121 Stack-based Buffer Overflow (string)

cweId : CWE-121 (string)

}

]

}

]

references : [ »

0 : { »

url : https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html (string)

name : https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html (string)

tags : [ »

0 : vendor-advisory (string)

]

}

]

metrics : [ »

0 : { »

cvssV3_1 : { »

version : 3.1 (string)

vectorString : CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H (string)

attackVector : NETWORK (string)

attackComplexity : HIGH (string)

privilegesRequired : NONE (string)

userInteraction : NONE (string)

scope : UNCHANGED (string)

confidentialityImpact : HIGH (string)

integrityImpact : HIGH (string)

availabilityImpact : HIGH (string)

baseScore : 8.1 (number)

baseSeverity : HIGH (string)

}

]

}

adp : [ »

0 : { »

providerMetadata : { »

orgId : af854a3a-2127-422b-91ae-364da2661108 (string)

shortName : CVE (string)

dateUpdated : 2024-08-02T21:23:39.430Z (string)

}

title : CVE Program Container (string)

references : [ »

0 : { »

url : https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html (string)

name : https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html (string)

tags : [ »

0 : vendor-advisory (string)

1 : x_transferred (string)

]

}

]

}

]

}

Show plain JSON

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:bosch:nexo-os:*:*:*:*:*:*:*:*", "matchCriteriaId": "73D9F18A-94BD-4EC8-A39A-0A6E8E4315D8", "versionEndIncluding": "1500-sp2", "versionStartIncluding": "1000", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:bosch:nexo_cordless_nutrunner_nxa011s-36v-b_\\(0608842012\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "5DC8C39A-F26D-4A5E-A502-5AA26651FD95", "vulnerable": false}, {"criteria": "cpe:2.3:h:bosch:nexo_cordless_nutrunner_nxa011s-36v_\\(0608842011\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "871F225C-EE0D-409E-98FF-CF8B2C83E877", "vulnerable": false}, {"criteria": "cpe:2.3:h:bosch:nexo_cordless_nutrunner_nxa015s-36v-b_\\(0608842006\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "D77B7A94-EB41-442E-9930-3372EFF0C469", "vulnerable": false}, {"criteria": "cpe:2.3:h:bosch:nexo_cordless_nutrunner_nxa015s-36v_\\(0608842001\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "6CF63477-0CE7-446C-9872-C186AB55ADEF", "vulnerable": false}, {"criteria": "cpe:2.3:h:bosch:nexo_cordless_nutrunner_nxa030s-36v-b_\\(0608842007\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "8703D886-1E08-40B1-9666-3D585A3CB52F", "vulnerable": false}, {"criteria": "cpe:2.3:h:bosch:nexo_cordless_nutrunner_nxa030s-36v_\\(0608842002\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "43D5973C-E4B3-4111-A710-FE48CFE5C1A5", "vulnerable": false}, {"criteria": "cpe:2.3:h:bosch:nexo_cordless_nutrunner_nxa050s-36v-b_\\(0608842008\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "EA7D4812-024D-432B-A526-0858427ED545", "vulnerable": false}, {"criteria": "cpe:2.3:h:bosch:nexo_cordless_nutrunner_nxa050s-36v_\\(0608842003\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "1614F6BA-E265-4344-A5B4-6DD0D3EC0BCF", "vulnerable": false}, {"criteria": "cpe:2.3:h:bosch:nexo_cordless_nutrunner_nxa065s-36v-b_\\(0608842014\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "206B990F-9ACD-408D-93BB-F43F25686862", "vulnerable": false}, {"criteria": "cpe:2.3:h:bosch:nexo_cordless_nutrunner_nxa065s-36v_\\(0608842013\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "E092DE8F-DB60-4D77-BCE5-8820B6190856", "vulnerable": false}, {"criteria": "cpe:2.3:h:bosch:nexo_cordless_nutrunner_nxp012qd-36v-b_\\(0608842010\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "94D48DD5-DF3B-4D74-B8D8-E1E0468DE2DC", "vulnerable": false}, {"criteria": "cpe:2.3:h:bosch:nexo_cordless_nutrunner_nxp012qd-36v_\\(0608842005\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "63746CB7-DBDF-4705-A771-CE9581742980", "vulnerable": false}, {"criteria": "cpe:2.3:h:bosch:nexo_cordless_nutrunner_nxv012t-36v-b_\\(0608842016\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "2F974170-84B6-49FF-9988-7EFDA5964E1A", "vulnerable": false}, {"criteria": "cpe:2.3:h:bosch:nexo_cordless_nutrunner_nxv012t-36v_\\(0608842015\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "87D757FC-2CBA-419F-84E8-518CBEB98646", "vulnerable": false}, {"criteria": "cpe:2.3:h:bosch:nexo_special_cordless_nutrunner_\\(0608pe2272\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "3E3E3820-FF4C-4B75-9541-B807EF52E661", "vulnerable": false}, {"criteria": "cpe:2.3:h:bosch:nexo_special_cordless_nutrunner_\\(0608pe2301\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "9B1B2908-2C42-4E6B-9953-30B2BE2E63F4", "vulnerable": false}, {"criteria": "cpe:2.3:h:bosch:nexo_special_cordless_nutrunner_\\(0608pe2514\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "6A09E202-1E38-433B-A039-F7B62C275E40", "vulnerable": false}, {"criteria": "cpe:2.3:h:bosch:nexo_special_cordless_nutrunner_\\(0608pe2515\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "206E809F-D1CA-437C-9C78-76E39F7A8D69", "vulnerable": false}, {"criteria": "cpe:2.3:h:bosch:nexo_special_cordless_nutrunner_\\(0608pe2666\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "7BF33E7B-B131-4A7C-8C4F-47906B8AEFC8", "vulnerable": false}, {"criteria": "cpe:2.3:h:bosch:nexo_special_cordless_nutrunner_\\(0608pe2673\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "E14B2068-DEEE-4C3F-9FCE-108A3F5E83DB", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "descriptions": [{"lang": "en", "value": "The vulnerability allows an unauthenticated remote attacker to perform a Denial-of-Service (DoS) attack or, possibly, obtain Remote Code Execution (RCE) via a crafted network request."}, {"lang": "es", "value": "La vulnerabilidad permite a un atacante remoto no autenticado realizar un ataque de denegaci\u00f3n de servicio (DoS) o, posiblemente, obtener ejecuci\u00f3n remota de c\u00f3digo (RCE) a trav\u00e9s de una solicitud de red manipulada."}], "id": "CVE-2023-48265", "lastModified": "2024-11-21T08:31:22.270", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.1, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.2, "impactScore": 5.9, "source": "psirt@bosch.com", "type": "Secondary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2024-01-10T13:15:48.173", "references": [{"source": "psirt@bosch.com", "tags": ["Vendor Advisory"], "url": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html"}], "sourceIdentifier": "psirt@bosch.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-121"}], "source": "psirt@bosch.com", "type": "Secondary"}, {"description": [{"lang": "en", "value": "CWE-787"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{

configurations : [ »

0 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:bosch:nexo-os:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 73D9F18A-94BD-4EC8-A39A-0A6E8E4315D8 (string)

versionEndIncluding : 1500-sp2 (string)

versionStartIncluding : 1000 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:h:bosch:nexo_cordless_nutrunner_nxa011s-36v-b_\(0608842012\):-:*:*:*:*:*:*:* (string)

matchCriteriaId : 5DC8C39A-F26D-4A5E-A502-5AA26651FD95 (string)

vulnerable : false (boolean)

}

1 : { »

criteria : cpe:2.3:h:bosch:nexo_cordless_nutrunner_nxa011s-36v_\(0608842011\):-:*:*:*:*:*:*:* (string)

matchCriteriaId : 871F225C-EE0D-409E-98FF-CF8B2C83E877 (string)

vulnerable : false (boolean)

}

2 : { »

criteria : cpe:2.3:h:bosch:nexo_cordless_nutrunner_nxa015s-36v-b_\(0608842006\):-:*:*:*:*:*:*:* (string)

matchCriteriaId : D77B7A94-EB41-442E-9930-3372EFF0C469 (string)

vulnerable : false (boolean)

}

3 : { »

criteria : cpe:2.3:h:bosch:nexo_cordless_nutrunner_nxa015s-36v_\(0608842001\):-:*:*:*:*:*:*:* (string)

matchCriteriaId : 6CF63477-0CE7-446C-9872-C186AB55ADEF (string)

vulnerable : false (boolean)

}

4 : { »

criteria : cpe:2.3:h:bosch:nexo_cordless_nutrunner_nxa030s-36v-b_\(0608842007\):-:*:*:*:*:*:*:* (string)

matchCriteriaId : 8703D886-1E08-40B1-9666-3D585A3CB52F (string)

vulnerable : false (boolean)

}

5 : { »

criteria : cpe:2.3:h:bosch:nexo_cordless_nutrunner_nxa030s-36v_\(0608842002\):-:*:*:*:*:*:*:* (string)

matchCriteriaId : 43D5973C-E4B3-4111-A710-FE48CFE5C1A5 (string)

vulnerable : false (boolean)

}

6 : { »

criteria : cpe:2.3:h:bosch:nexo_cordless_nutrunner_nxa050s-36v-b_\(0608842008\):-:*:*:*:*:*:*:* (string)

matchCriteriaId : EA7D4812-024D-432B-A526-0858427ED545 (string)

vulnerable : false (boolean)

}

7 : { »

criteria : cpe:2.3:h:bosch:nexo_cordless_nutrunner_nxa050s-36v_\(0608842003\):-:*:*:*:*:*:*:* (string)

matchCriteriaId : 1614F6BA-E265-4344-A5B4-6DD0D3EC0BCF (string)

vulnerable : false (boolean)

}

8 : { »

criteria : cpe:2.3:h:bosch:nexo_cordless_nutrunner_nxa065s-36v-b_\(0608842014\):-:*:*:*:*:*:*:* (string)

matchCriteriaId : 206B990F-9ACD-408D-93BB-F43F25686862 (string)

vulnerable : false (boolean)

}

9 : { »

criteria : cpe:2.3:h:bosch:nexo_cordless_nutrunner_nxa065s-36v_\(0608842013\):-:*:*:*:*:*:*:* (string)

matchCriteriaId : E092DE8F-DB60-4D77-BCE5-8820B6190856 (string)

vulnerable : false (boolean)

}

10 : { »

criteria : cpe:2.3:h:bosch:nexo_cordless_nutrunner_nxp012qd-36v-b_\(0608842010\):-:*:*:*:*:*:*:* (string)

matchCriteriaId : 94D48DD5-DF3B-4D74-B8D8-E1E0468DE2DC (string)

vulnerable : false (boolean)

}

11 : { »

criteria : cpe:2.3:h:bosch:nexo_cordless_nutrunner_nxp012qd-36v_\(0608842005\):-:*:*:*:*:*:*:* (string)

matchCriteriaId : 63746CB7-DBDF-4705-A771-CE9581742980 (string)

vulnerable : false (boolean)

}

12 : { »

criteria : cpe:2.3:h:bosch:nexo_cordless_nutrunner_nxv012t-36v-b_\(0608842016\):-:*:*:*:*:*:*:* (string)

matchCriteriaId : 2F974170-84B6-49FF-9988-7EFDA5964E1A (string)

vulnerable : false (boolean)

}

13 : { »

criteria : cpe:2.3:h:bosch:nexo_cordless_nutrunner_nxv012t-36v_\(0608842015\):-:*:*:*:*:*:*:* (string)

matchCriteriaId : 87D757FC-2CBA-419F-84E8-518CBEB98646 (string)

vulnerable : false (boolean)

}

14 : { »

criteria : cpe:2.3:h:bosch:nexo_special_cordless_nutrunner_\(0608pe2272\):-:*:*:*:*:*:*:* (string)

matchCriteriaId : 3E3E3820-FF4C-4B75-9541-B807EF52E661 (string)

vulnerable : false (boolean)

}

15 : { »

criteria : cpe:2.3:h:bosch:nexo_special_cordless_nutrunner_\(0608pe2301\):-:*:*:*:*:*:*:* (string)

matchCriteriaId : 9B1B2908-2C42-4E6B-9953-30B2BE2E63F4 (string)

vulnerable : false (boolean)

}

16 : { »

criteria : cpe:2.3:h:bosch:nexo_special_cordless_nutrunner_\(0608pe2514\):-:*:*:*:*:*:*:* (string)

matchCriteriaId : 6A09E202-1E38-433B-A039-F7B62C275E40 (string)

vulnerable : false (boolean)

}

17 : { »

criteria : cpe:2.3:h:bosch:nexo_special_cordless_nutrunner_\(0608pe2515\):-:*:*:*:*:*:*:* (string)

matchCriteriaId : 206E809F-D1CA-437C-9C78-76E39F7A8D69 (string)

vulnerable : false (boolean)

}

18 : { »

criteria : cpe:2.3:h:bosch:nexo_special_cordless_nutrunner_\(0608pe2666\):-:*:*:*:*:*:*:* (string)

matchCriteriaId : 7BF33E7B-B131-4A7C-8C4F-47906B8AEFC8 (string)

vulnerable : false (boolean)

}

19 : { »

criteria : cpe:2.3:h:bosch:nexo_special_cordless_nutrunner_\(0608pe2673\):-:*:*:*:*:*:*:* (string)

matchCriteriaId : E14B2068-DEEE-4C3F-9FCE-108A3F5E83DB (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

]

descriptions : [ »

0 : { »

lang : en (string)

value : The vulnerability allows an unauthenticated remote attacker to perform a Denial-of-Service (DoS) attack or, possibly, obtain Remote Code Execution (RCE) via a crafted network request. (string)

}

1 : { »

lang : es (string)

value : La vulnerabilidad permite a un atacante remoto no autenticado realizar un ataque de denegación de servicio (DoS) o, posiblemente, obtener ejecución remota de código (RCE) a través de una solicitud de red manipulada. (string)

}

]

id : CVE-2023-48265 (string)

lastModified : 2024-11-21T08:31:22.270 (string)

metrics : { »

cvssMetricV31 : [ »

0 : { »

cvssData : { »

attackComplexity : HIGH (string)

attackVector : NETWORK (string)

availabilityImpact : HIGH (string)

baseScore : 8.1 (number)

baseSeverity : HIGH (string)

confidentialityImpact : HIGH (string)

integrityImpact : HIGH (string)

privilegesRequired : NONE (string)

scope : UNCHANGED (string)

userInteraction : NONE (string)

vectorString : CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H (string)

version : 3.1 (string)

}

exploitabilityScore : 2.2 (number)

impactScore : 5.9 (number)

source : psirt@bosch.com (string)

type : Secondary (string)

}

1 : { »

cvssData : { »

attackComplexity : LOW (string)

attackVector : NETWORK (string)

availabilityImpact : HIGH (string)

baseScore : 9.8 (number)

baseSeverity : CRITICAL (string)

confidentialityImpact : HIGH (string)

integrityImpact : HIGH (string)

privilegesRequired : NONE (string)

scope : UNCHANGED (string)

userInteraction : NONE (string)

vectorString : CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H (string)

version : 3.1 (string)

}

exploitabilityScore : 3.9 (number)

impactScore : 5.9 (number)

source : nvd@nist.gov (string)

type : Primary (string)

}

]

}

published : 2024-01-10T13:15:48.173 (string)

references : [ »

0 : { »

source : psirt@bosch.com (string)

tags : [ »

0 : Vendor Advisory (string)

]

url : https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html (string)

}

1 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Vendor Advisory (string)

]

url : https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html (string)

}

]

sourceIdentifier : psirt@bosch.com (string)

vulnStatus : Modified (string)

weaknesses : [ »

0 : { »

description : [ »

0 : { »

lang : en (string)

value : CWE-121 (string)

}

]

source : psirt@bosch.com (string)

type : Secondary (string)

}

1 : { »

description : [ »

0 : { »

lang : en (string)

value : CWE-787 (string)

}

]

source : nvd@nist.gov (string)

type : Primary (string)

}

]

}

Metrics

Attack Vector Network

Attack Complexity High

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Affected Vendors & Products

Metrics

Attack Vector Network

Attack Complexity High

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object