CVE-2022-32534

The Bosch Ethernet switch PRA-ES8P2S with software version 1.01.05 and earlier was found to be vulnerable to command injection through its diagnostics web interface. This allows execution of shell commands.

CVSS v3 9.8 CRITICAL
CVSS v2.0 10.0 HIGH

9.8^/10

CVSS v3 : CRITICAL

Vector :

Exploitability : 3.9 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

10.0^/10

CVSS v2.0 : HIGH

Vector : AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 10.0 / Impact : 10.0

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
https://psirt.bosch.com/security-advisories/BOSCH-SA-247052-BT.html	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:bosch:pra-es8p2s_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:bosch:pra-es8p2s:-:*:*:*:*:*:*:*

History

29 Jun 2023, 14:24

Type	Values Removed	Values Added
CWE	~~CWE-74~~	CWE-78

01 Jul 2022, 14:03

Type	Values Removed	Values Added
CPE		cpe:2.3:o:bosch:pra-es8p2s_firmware:::::::: cpe:2.3:h:bosch:pra-es8p2s:-:::::::*
CWE		CWE-74
First Time		Bosch pra-es8p2s Bosch Bosch pra-es8p2s Firmware
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : 10.0 v3 : 9.8
References	~~(CONFIRM) https://psirt.bosch.com/security-advisories/BOSCH-SA-247052-BT.html -~~	(CONFIRM) https://psirt.bosch.com/security-advisories/BOSCH-SA-247052-BT.html - Vendor Advisory

23 Jun 2022, 17:19

Type	Values Removed	Values Added
New CVE

Information

Published : 2022-06-23 17:15

Updated : 2023-12-10 14:22

NVD link : CVE-2022-32534

Mitre link : CVE-2022-32534

CVE.ORG link : CVE-2022-32534

JSON object : View

Products Affected

bosch

pra-es8p2s_firmware
pra-es8p2s

CWE

CWE-78

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

CWE-20

Improper Input Validation

{"id": "CVE-2022-32534", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 10.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": false, "impactScore": 10.0, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 3.9}, {"type": "Secondary", "source": "psirt@bosch.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.8, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 2.8}]}, "published": "2022-06-23T17:15:13.700", "references": [{"url": "https://psirt.bosch.com/security-advisories/BOSCH-SA-247052-BT.html", "tags": ["Vendor Advisory"], "source": "psirt@bosch.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-78"}]}, {"type": "Secondary", "source": "psirt@bosch.com", "description": [{"lang": "en", "value": "CWE-20"}]}], "descriptions": [{"lang": "en", "value": "The Bosch Ethernet switch PRA-ES8P2S with software version 1.01.05 and earlier was found to be vulnerable to command injection through its diagnostics web interface. This allows execution of shell commands."}, {"lang": "es", "value": "El switch Ethernet de Bosch PRA-ES8P2S con la versi\u00f3n de software 1.01.05 y anteriores es vulnerable a una inyecci\u00f3n de comandos mediante su interfaz web de diagn\u00f3stico. Esto permite una ejecuci\u00f3n de comandos de shell"}], "lastModified": "2023-06-29T14:24:10.490", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:bosch:pra-es8p2s_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9F5BB28C-877A-49B1-B320-9033F3A80570", "versionEndIncluding": "1.01.05"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:bosch:pra-es8p2s:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "8E5A4A92-8B68-4216-97EC-173AEDFBA1C2"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "psirt@bosch.com"}