{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-18T10:07:47.258","vulnerabilities":[{"cve":{"id":"CVE-2022-32540","sourceIdentifier":"psirt@bosch.com","published":"2022-09-30T17:15:12.890","lastModified":"2024-11-21T07:06:35.510","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Information Disclosure in Operator Client application in BVMS 10.1.1, 11.0 and 11.1.0 and VIDEOJET Decoder VJD-7513 versions 10.23 and 10.30 allows man-in-the-middle attacker to compromise confidential video stream. This is only applicable for UDP encryption when target system contains cameras with platform CPP13 or CPP14 and firmware version 8.x."},{"lang":"es","value":"Una divulgación de información en la aplicación Operator Client en BVMS versiones 10.1.1, 11.0 y 11.1.0 y VIDEOJET Decoder VJD-7513 versiones 10.23 y 10.30, permite a un atacante de tipo man-in-the-middle comprometer el flujo de vídeo confidencial. Esto sólo es aplicable para la codificación UDP cuando el sistema de destino contiene cámaras con plataforma CPP13 o CPP14 y versión de firmware 8.x"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":5.9,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.2,"impactScore":3.6}],"cvssMetricV30":[{"source":"psirt@bosch.com","type":"Secondary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N","baseScore":7.4,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":2.2,"impactScore":5.2}]},"weaknesses":[{"source":"psirt@bosch.com","type":"Secondary","description":[{"lang":"en","value":"CWE-200"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-200"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:bosch:bosch_video_management_system:*:*:*:*:*:*:*:*","versionStartIncluding":"10.1","versionEndIncluding":"10.1.1","matchCriteriaId":"CD731DAC-BFBB-4A0B-80D2-7B96AD570739"},{"vulnerable":true,"criteria":"cpe:2.3:a:bosch:bosch_video_management_system:*:*:*:*:*:*:*:*","versionStartIncluding":"11.1","versionEndIncluding":"11.1.0","matchCriteriaId":"74B38180-71C8-4C4E-8079-AD66AA9822BF"},{"vulnerable":true,"criteria":"cpe:2.3:a:bosch:bosch_video_management_system:11.0:*:*:*:*:*:*:*","matchCriteriaId":"1FF22168-E2A2-47B8-B9BC-104FF1CFDF30"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:bosch:videojet_decoder_7513_firmware:10.23.0002:*:*:*:*:*:*:*","matchCriteriaId":"C486DC73-F6C1-4A4A-896B-E613B2DBEF55"},{"vulnerable":true,"criteria":"cpe:2.3:o:bosch:videojet_decoder_7513_firmware:10.30.0005:*:*:*:*:*:*:*","matchCriteriaId":"DF3AFA6F-2DAB-4D5D-8AE3-1948563548E7"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:bosch:videojet_decoder_7513:-:*:*:*:*:*:*:*","matchCriteriaId":"A96A7B0B-4C65-412E-8AB0-BD6098548598"}]}]}],"references":[{"url":"https://psirt.bosch.com/security-advisories/bosch-sa-464066.html","source":"psirt@bosch.com","tags":["Broken Link"]},{"url":"https://psirt.bosch.com/security-advisories/bosch-sa-464066.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link"]}]}}]}