CVE-2021-23848 - Bosch Cpp7 Firmware, Bosch Cpp4 Firmware and Bosch Cpp13 Firmware
Moderate 6.1
An error in the URL handler Bosch IP cameras may lead to a reflected cross site scripting (XSS) in the web-based interface. An attacker with knowledge of the camera address can send a crafted link to a user, which will execute javascript code in the context of the user.
Affected software
Bosch Cpp7 Firmware
Bosch Cpp4 Firmware
Bosch Cpp13 Firmware
Bosch Cpp6 Firmware
Bosch Cpp7.3 Firmware