CVE-2019-11898

CRITICAL

9.9

CVSS Severity Score

EPSS Score0.1560%

EPSS Percentile35.07th

Published2019年9月12日

Last Modified2024年11月21日

Vulnerability Description

Unauthorized APE administration privileges can be achieved by reverse engineering one of the APE service tools. The service tool is discontinued with Bosch Access Professional Edition (APE) 3.8.

Affected Platforms (CPE)

📦

Bosch

Access

< 3.8

References & Advisories

🔗 https://psirt.bosch.com/Advisory/BOSCH-SA-710832.html

関連する脆弱性情報

CVE-2017-1091210.0

Xen through 4.8.x mishandles page transfer, which allows guest OS users to obtain privileged host OS access, aka XSA-217.

CVE-2017-1092010.0

The grant-table feature in Xen through 4.8.x mishandles a GNTMAP_device_map and GNTMAP_host_map mapping, when followed by only a G...

CVE-2017-1091810.0

Xen through 4.8.x does not validate memory allocations during certain P2M operations, which allows guest OS users to obtain privil...

CVE-2017-1092110.0

The grant-table feature in Xen through 4.8.x does not ensure sufficient type counts for a GNTMAP_device_map and GNTMAP_host_map ma...