Description
Unauthorized APE administration privileges can be achieved by reverse engineering one of the APE service tools. The service tool is discontinued with Bosch Access Professional Edition (APE) 3.8.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_confirm
https://psirt.bosch.com/Advisory/BOSCH-SA-710832.html
Scores
CVSS v3
9.9
EPSS
0.0110
EPSS Percentile
61.3%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
Details
CWE
CWE-798
Status
published
Products (1)
bosch/access
< 3.8
Published
Sep 12, 2019
Tracked Since
Feb 18, 2026