Search

Find a vulnerability

Search criteria

    72 vulnerabilities by rexroth

    VAR-201607-0381

    Vulnerability from variot - Updated: 2025-04-12 23:04

    Cross-site scripting (XSS) vulnerability in Rexroth Bosch BLADEcontrol-WebVIS 3.0.2 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Rexroth Bosch BLADEcontrol is a web-based HMI (Human Machine Interface) system from Rexroth Bosch, Germany. Exploiting these vulnerabilities could allow an attacker to steal cookie-based authentication credentials, compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database

    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "configurations": {
          "@id": "https://www.variotdbs.pl/ref/configurations"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-201607-0381",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": "bladecontrol-webvis",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "bosch",
            "version": "3.0.2"
          },
          {
            "model": "bosch bladecontrol",
            "scope": "lte",
            "trust": 0.8,
            "vendor": "rexroth",
            "version": "\u003c=3.0.2"
          },
          {
            "model": "bladecontrol-webvis",
            "scope": "lte",
            "trust": 0.8,
            "vendor": "bosch rexroth",
            "version": "3.0.2"
          },
          {
            "model": "bladecontrol-webvis",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "rexroth",
            "version": "3.0.2"
          },
          {
            "model": "bosch bladecontrol-webvis",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "rexroth",
            "version": "3.0.2"
          }
        ],
        "sources": [
          {
            "db": "IVD",
            "id": "76fb0f44-9ea6-40e7-ac92-c08a9d8ac261"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2016-04593"
          },
          {
            "db": "BID",
            "id": "91572"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2016-003494"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201607-025"
          },
          {
            "db": "NVD",
            "id": "CVE-2016-4508"
          }
        ]
      },
      "configurations": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/configurations#",
          "children": {
            "@container": "@list"
          },
          "cpe_match": {
            "@container": "@list"
          },
          "data": {
            "@container": "@list"
          },
          "nodes": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "cpe_match": [
                  {
                    "cpe22Uri": "cpe:/a:rexroth:bladecontrol-webvis",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2016-003494"
          }
        ]
      },
      "credits": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/credits#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Maxim Rupp",
        "sources": [
          {
            "db": "BID",
            "id": "91572"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201607-025"
          }
        ],
        "trust": 0.9
      },
      "cve": "CVE-2016-4508",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/cvss/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "nvd@nist.gov",
                "availabilityImpact": "NONE",
                "baseScore": 4.3,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 8.6,
                "id": "CVE-2016-4508",
                "impactScore": 2.9,
                "integrityImpact": "PARTIAL",
                "severity": "MEDIUM",
                "trust": 1.8,
                "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
                "version": "2.0"
              },
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "CNVD",
                "availabilityImpact": "NONE",
                "baseScore": 6.4,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 10.0,
                "id": "CNVD-2016-04593",
                "impactScore": 4.9,
                "integrityImpact": "PARTIAL",
                "severity": "MEDIUM",
                "trust": 0.6,
                "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:N",
                "version": "2.0"
              },
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "IVD",
                "availabilityImpact": "NONE",
                "baseScore": 6.4,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 10.0,
                "id": "76fb0f44-9ea6-40e7-ac92-c08a9d8ac261",
                "impactScore": 4.9,
                "integrityImpact": "PARTIAL",
                "severity": "MEDIUM",
                "trust": 0.2,
                "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:N",
                "version": "2.9 [IVD]"
              }
            ],
            "cvssV3": [
              {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "author": "nvd@nist.gov",
                "availabilityImpact": "NONE",
                "baseScore": 6.1,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "exploitabilityScore": 2.8,
                "id": "CVE-2016-4508",
                "impactScore": 2.7,
                "integrityImpact": "LOW",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "trust": 1.0,
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
                "version": "3.1"
              },
              {
                "attackComplexity": "Low",
                "attackVector": "Network",
                "author": "NVD",
                "availabilityImpact": "None",
                "baseScore": 6.1,
                "baseSeverity": "Medium",
                "confidentialityImpact": "Low",
                "exploitabilityScore": null,
                "id": "CVE-2016-4508",
                "impactScore": null,
                "integrityImpact": "Low",
                "privilegesRequired": "None",
                "scope": "Changed",
                "trust": 0.8,
                "userInteraction": "Required",
                "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
                "version": "3.0"
              }
            ],
            "severity": [
              {
                "author": "nvd@nist.gov",
                "id": "CVE-2016-4508",
                "trust": 1.0,
                "value": "MEDIUM"
              },
              {
                "author": "NVD",
                "id": "CVE-2016-4508",
                "trust": 0.8,
                "value": "Medium"
              },
              {
                "author": "CNVD",
                "id": "CNVD-2016-04593",
                "trust": 0.6,
                "value": "MEDIUM"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-201607-025",
                "trust": 0.6,
                "value": "MEDIUM"
              },
              {
                "author": "IVD",
                "id": "76fb0f44-9ea6-40e7-ac92-c08a9d8ac261",
                "trust": 0.2,
                "value": "MEDIUM"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "IVD",
            "id": "76fb0f44-9ea6-40e7-ac92-c08a9d8ac261"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2016-04593"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2016-003494"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201607-025"
          },
          {
            "db": "NVD",
            "id": "CVE-2016-4508"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Cross-site scripting (XSS) vulnerability in Rexroth Bosch BLADEcontrol-WebVIS 3.0.2 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Rexroth Bosch BLADEcontrol is a web-based HMI (Human Machine Interface) system from Rexroth Bosch, Germany. \nExploiting these vulnerabilities could allow an attacker to steal cookie-based authentication credentials, compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2016-4508"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2016-003494"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2016-04593"
          },
          {
            "db": "BID",
            "id": "91572"
          },
          {
            "db": "IVD",
            "id": "76fb0f44-9ea6-40e7-ac92-c08a9d8ac261"
          }
        ],
        "trust": 2.61
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2016-4508",
            "trust": 3.5
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-16-187-01",
            "trust": 3.3
          },
          {
            "db": "CNVD",
            "id": "CNVD-2016-04593",
            "trust": 0.8
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201607-025",
            "trust": 0.8
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2016-003494",
            "trust": 0.8
          },
          {
            "db": "BID",
            "id": "91572",
            "trust": 0.3
          },
          {
            "db": "IVD",
            "id": "76FB0F44-9EA6-40E7-AC92-C08A9D8AC261",
            "trust": 0.2
          }
        ],
        "sources": [
          {
            "db": "IVD",
            "id": "76fb0f44-9ea6-40e7-ac92-c08a9d8ac261"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2016-04593"
          },
          {
            "db": "BID",
            "id": "91572"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2016-003494"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201607-025"
          },
          {
            "db": "NVD",
            "id": "CVE-2016-4508"
          }
        ]
      },
      "id": "VAR-201607-0381",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "IVD",
            "id": "76fb0f44-9ea6-40e7-ac92-c08a9d8ac261"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2016-04593"
          }
        ],
        "trust": 1.8
      },
      "iot_taxonomy": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "category": [
              "ICS"
            ],
            "sub_category": null,
            "trust": 0.8
          }
        ],
        "sources": [
          {
            "db": "IVD",
            "id": "76fb0f44-9ea6-40e7-ac92-c08a9d8ac261"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2016-04593"
          }
        ]
      },
      "last_update_date": "2025-04-12T23:04:13.515000Z",
      "patch": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/patch#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "title": "Top Page",
            "trust": 0.8,
            "url": "https://www.boschrexroth.com/"
          },
          {
            "title": "Patch for Rexroth Bosch BLADEcontrol Cross-Site Scripting Vulnerability",
            "trust": 0.6,
            "url": "https://www.cnvd.org.cn/patchInfo/show/78678"
          },
          {
            "title": "Rexroth Bosch BLADEcontrol Fixes for cross-site scripting vulnerabilities",
            "trust": 0.6,
            "url": "http://123.124.177.30/web/xxk/bdxqById.tag?id=62618"
          }
        ],
        "sources": [
          {
            "db": "CNVD",
            "id": "CNVD-2016-04593"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2016-003494"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201607-025"
          }
        ]
      },
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "CWE-79",
            "trust": 1.8
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2016-003494"
          },
          {
            "db": "NVD",
            "id": "CVE-2016-4508"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 3.3,
            "url": "https://ics-cert.us-cert.gov/advisories/icsa-16-187-01"
          },
          {
            "trust": 0.8,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2016-4508"
          },
          {
            "trust": 0.8,
            "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2016-4508"
          },
          {
            "trust": 0.3,
            "url": "https://www.boschrexroth.com/en/xc/home/index"
          }
        ],
        "sources": [
          {
            "db": "CNVD",
            "id": "CNVD-2016-04593"
          },
          {
            "db": "BID",
            "id": "91572"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2016-003494"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201607-025"
          },
          {
            "db": "NVD",
            "id": "CVE-2016-4508"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "IVD",
            "id": "76fb0f44-9ea6-40e7-ac92-c08a9d8ac261"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2016-04593"
          },
          {
            "db": "BID",
            "id": "91572"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2016-003494"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201607-025"
          },
          {
            "db": "NVD",
            "id": "CVE-2016-4508"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2016-07-07T00:00:00",
            "db": "IVD",
            "id": "76fb0f44-9ea6-40e7-ac92-c08a9d8ac261"
          },
          {
            "date": "2016-07-07T00:00:00",
            "db": "CNVD",
            "id": "CNVD-2016-04593"
          },
          {
            "date": "2016-07-05T00:00:00",
            "db": "BID",
            "id": "91572"
          },
          {
            "date": "2016-07-12T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2016-003494"
          },
          {
            "date": "2016-07-06T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-201607-025"
          },
          {
            "date": "2016-07-06T14:59:03.487000",
            "db": "NVD",
            "id": "CVE-2016-4508"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2016-08-15T00:00:00",
            "db": "CNVD",
            "id": "CNVD-2016-04593"
          },
          {
            "date": "2016-07-05T00:00:00",
            "db": "BID",
            "id": "91572"
          },
          {
            "date": "2016-07-12T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2016-003494"
          },
          {
            "date": "2022-10-08T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-201607-025"
          },
          {
            "date": "2025-04-12T10:46:40.837000",
            "db": "NVD",
            "id": "CVE-2016-4508"
          }
        ]
      },
      "threat_type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "remote",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-201607-025"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/title#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Rexroth Bosch BLADEcontrol Cross-Site Scripting Vulnerability",
        "sources": [
          {
            "db": "IVD",
            "id": "76fb0f44-9ea6-40e7-ac92-c08a9d8ac261"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2016-04593"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201607-025"
          }
        ],
        "trust": 1.4
      },
      "type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "XSS",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-201607-025"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-201607-0380

    Vulnerability from variot - Updated: 2025-04-12 23:04

    SQL injection vulnerability in Rexroth Bosch BLADEcontrol-WebVIS 3.0.2 and earlier allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors. Rexroth Bosch BLADEcontrol is a web-based HMI system. Rexroth Bosch BLADEcontrol-WebVIS is prone to SQL-injection and cross-site scripting vulnerabilities. Exploiting these vulnerabilities could allow an attacker to steal cookie-based authentication credentials, compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database. Rexroth Bosch BLADEcontrol-WebVIS version 3.0.2 and earlier are vulnerable

    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "configurations": {
          "@id": "https://www.variotdbs.pl/ref/configurations"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-201607-0380",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": "bladecontrol-webvis",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "bosch",
            "version": "3.0.2"
          },
          {
            "model": "bladecontrol-webvis",
            "scope": "lte",
            "trust": 0.8,
            "vendor": "bosch rexroth",
            "version": "3.0.2"
          },
          {
            "model": "bosch bladecontrol",
            "scope": "lte",
            "trust": 0.6,
            "vendor": "rexroth",
            "version": "\u003c=3.0.2"
          },
          {
            "model": "bladecontrol-webvis",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "rexroth",
            "version": "3.0.2"
          },
          {
            "model": "bosch bladecontrol-webvis",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "rexroth",
            "version": "3.0.2"
          },
          {
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "bladecontrol webvis",
            "version": "*"
          }
        ],
        "sources": [
          {
            "db": "IVD",
            "id": "b66fed74-e827-4d0e-92fd-d480e595c9f6"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2016-04594"
          },
          {
            "db": "BID",
            "id": "91572"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2016-003493"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201607-024"
          },
          {
            "db": "NVD",
            "id": "CVE-2016-4507"
          }
        ]
      },
      "configurations": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/configurations#",
          "children": {
            "@container": "@list"
          },
          "cpe_match": {
            "@container": "@list"
          },
          "data": {
            "@container": "@list"
          },
          "nodes": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "cpe_match": [
                  {
                    "cpe22Uri": "cpe:/a:rexroth:bladecontrol-webvis",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2016-003493"
          }
        ]
      },
      "credits": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/credits#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Maxim Rupp",
        "sources": [
          {
            "db": "BID",
            "id": "91572"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201607-024"
          }
        ],
        "trust": 0.9
      },
      "cve": "CVE-2016-4507",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/cvss/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "SINGLE",
                "author": "nvd@nist.gov",
                "availabilityImpact": "NONE",
                "baseScore": 5.5,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 8.0,
                "id": "CVE-2016-4507",
                "impactScore": 4.9,
                "integrityImpact": "PARTIAL",
                "severity": "MEDIUM",
                "trust": 1.8,
                "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:N",
                "version": "2.0"
              },
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "CNVD",
                "availabilityImpact": "NONE",
                "baseScore": 6.4,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 10.0,
                "id": "CNVD-2016-04594",
                "impactScore": 4.9,
                "integrityImpact": "PARTIAL",
                "severity": "MEDIUM",
                "trust": 0.6,
                "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:N",
                "version": "2.0"
              },
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "IVD",
                "availabilityImpact": "NONE",
                "baseScore": 6.4,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 10.0,
                "id": "b66fed74-e827-4d0e-92fd-d480e595c9f6",
                "impactScore": 4.9,
                "integrityImpact": "PARTIAL",
                "severity": "MEDIUM",
                "trust": 0.2,
                "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:N",
                "version": "2.9 [IVD]"
              }
            ],
            "cvssV3": [
              {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "author": "nvd@nist.gov",
                "availabilityImpact": "NONE",
                "baseScore": 6.4,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "exploitabilityScore": 3.1,
                "id": "CVE-2016-4507",
                "impactScore": 2.7,
                "integrityImpact": "LOW",
                "privilegesRequired": "LOW",
                "scope": "CHANGED",
                "trust": 1.0,
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N",
                "version": "3.1"
              },
              {
                "attackComplexity": "Low",
                "attackVector": "Network",
                "author": "NVD",
                "availabilityImpact": "None",
                "baseScore": 6.4,
                "baseSeverity": "Medium",
                "confidentialityImpact": "Low",
                "exploitabilityScore": null,
                "id": "CVE-2016-4507",
                "impactScore": null,
                "integrityImpact": "Low",
                "privilegesRequired": "Low",
                "scope": "Changed",
                "trust": 0.8,
                "userInteraction": "None",
                "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N",
                "version": "3.0"
              }
            ],
            "severity": [
              {
                "author": "nvd@nist.gov",
                "id": "CVE-2016-4507",
                "trust": 1.0,
                "value": "MEDIUM"
              },
              {
                "author": "NVD",
                "id": "CVE-2016-4507",
                "trust": 0.8,
                "value": "Medium"
              },
              {
                "author": "CNVD",
                "id": "CNVD-2016-04594",
                "trust": 0.6,
                "value": "MEDIUM"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-201607-024",
                "trust": 0.6,
                "value": "MEDIUM"
              },
              {
                "author": "IVD",
                "id": "b66fed74-e827-4d0e-92fd-d480e595c9f6",
                "trust": 0.2,
                "value": "MEDIUM"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "IVD",
            "id": "b66fed74-e827-4d0e-92fd-d480e595c9f6"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2016-04594"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2016-003493"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201607-024"
          },
          {
            "db": "NVD",
            "id": "CVE-2016-4507"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "SQL injection vulnerability in Rexroth Bosch BLADEcontrol-WebVIS 3.0.2 and earlier allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors. Rexroth Bosch BLADEcontrol is a web-based HMI system. Rexroth Bosch BLADEcontrol-WebVIS is prone to SQL-injection and cross-site scripting vulnerabilities. \nExploiting these vulnerabilities could allow an attacker to steal cookie-based authentication credentials, compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database. \nRexroth Bosch BLADEcontrol-WebVIS version 3.0.2 and earlier are vulnerable",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2016-4507"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2016-003493"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2016-04594"
          },
          {
            "db": "BID",
            "id": "91572"
          },
          {
            "db": "IVD",
            "id": "b66fed74-e827-4d0e-92fd-d480e595c9f6"
          }
        ],
        "trust": 2.61
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2016-4507",
            "trust": 3.5
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-16-187-01",
            "trust": 3.3
          },
          {
            "db": "CNVD",
            "id": "CNVD-2016-04594",
            "trust": 0.8
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201607-024",
            "trust": 0.8
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2016-003493",
            "trust": 0.8
          },
          {
            "db": "BID",
            "id": "91572",
            "trust": 0.3
          },
          {
            "db": "IVD",
            "id": "B66FED74-E827-4D0E-92FD-D480E595C9F6",
            "trust": 0.2
          }
        ],
        "sources": [
          {
            "db": "IVD",
            "id": "b66fed74-e827-4d0e-92fd-d480e595c9f6"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2016-04594"
          },
          {
            "db": "BID",
            "id": "91572"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2016-003493"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201607-024"
          },
          {
            "db": "NVD",
            "id": "CVE-2016-4507"
          }
        ]
      },
      "id": "VAR-201607-0380",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "IVD",
            "id": "b66fed74-e827-4d0e-92fd-d480e595c9f6"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2016-04594"
          }
        ],
        "trust": 1.8
      },
      "iot_taxonomy": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "category": [
              "ICS"
            ],
            "sub_category": null,
            "trust": 0.8
          }
        ],
        "sources": [
          {
            "db": "IVD",
            "id": "b66fed74-e827-4d0e-92fd-d480e595c9f6"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2016-04594"
          }
        ]
      },
      "last_update_date": "2025-04-12T23:04:13.472000Z",
      "patch": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/patch#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "title": "Top Page",
            "trust": 0.8,
            "url": "https://www.boschrexroth.com/"
          },
          {
            "title": "Rexroth Bosch BLADEcontrol-WebVIS SQL Injection Vulnerability Patch",
            "trust": 0.6,
            "url": "https://www.cnvd.org.cn/patchInfo/show/78679"
          },
          {
            "title": "Rexroth Bosch BLADEcontrol SQL Repair measures for injecting vulnerabilities",
            "trust": 0.6,
            "url": "http://123.124.177.30/web/xxk/bdxqById.tag?id=62617"
          }
        ],
        "sources": [
          {
            "db": "CNVD",
            "id": "CNVD-2016-04594"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2016-003493"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201607-024"
          }
        ]
      },
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "CWE-89",
            "trust": 1.8
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2016-003493"
          },
          {
            "db": "NVD",
            "id": "CVE-2016-4507"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 3.3,
            "url": "https://ics-cert.us-cert.gov/advisories/icsa-16-187-01"
          },
          {
            "trust": 0.8,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2016-4507"
          },
          {
            "trust": 0.8,
            "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2016-4507"
          },
          {
            "trust": 0.3,
            "url": "https://www.boschrexroth.com/en/xc/home/index"
          }
        ],
        "sources": [
          {
            "db": "CNVD",
            "id": "CNVD-2016-04594"
          },
          {
            "db": "BID",
            "id": "91572"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2016-003493"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201607-024"
          },
          {
            "db": "NVD",
            "id": "CVE-2016-4507"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "IVD",
            "id": "b66fed74-e827-4d0e-92fd-d480e595c9f6"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2016-04594"
          },
          {
            "db": "BID",
            "id": "91572"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2016-003493"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201607-024"
          },
          {
            "db": "NVD",
            "id": "CVE-2016-4507"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2016-07-07T00:00:00",
            "db": "IVD",
            "id": "b66fed74-e827-4d0e-92fd-d480e595c9f6"
          },
          {
            "date": "2016-07-07T00:00:00",
            "db": "CNVD",
            "id": "CNVD-2016-04594"
          },
          {
            "date": "2016-07-05T00:00:00",
            "db": "BID",
            "id": "91572"
          },
          {
            "date": "2016-07-12T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2016-003493"
          },
          {
            "date": "2016-07-06T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-201607-024"
          },
          {
            "date": "2016-07-06T14:59:02.503000",
            "db": "NVD",
            "id": "CVE-2016-4507"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2016-07-07T00:00:00",
            "db": "CNVD",
            "id": "CNVD-2016-04594"
          },
          {
            "date": "2016-07-05T00:00:00",
            "db": "BID",
            "id": "91572"
          },
          {
            "date": "2016-07-12T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2016-003493"
          },
          {
            "date": "2022-10-08T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-201607-024"
          },
          {
            "date": "2025-04-12T10:46:40.837000",
            "db": "NVD",
            "id": "CVE-2016-4507"
          }
        ]
      },
      "threat_type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "remote",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-201607-024"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/title#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Bosch Rexroth BLADEcontrol-WebVIS In  SQL Injection vulnerability",
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2016-003493"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "SQL injection",
        "sources": [
          {
            "db": "IVD",
            "id": "b66fed74-e827-4d0e-92fd-d480e595c9f6"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201607-024"
          }
        ],
        "trust": 0.8
      }
    }

    CVE-2023-48266 (GCVE-0-2023-48266)

    Vulnerability from nvd – Published: 2024-01-10 13:10 – Updated: 2025-06-17 20:59
    VLAI
    Summary
    The vulnerability allows an unauthenticated remote attacker to perform a Denial-of-Service (DoS) attack or, possibly, obtain Remote Code Execution (RCE) via a crafted network request.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-121 - Stack-based Buffer Overflow
    Assigner
    References
    Impacted products
    Vendor Product Version
    Rexroth Nexo cordless nutrunner NXA015S-36V (0608842001) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA030S-36V (0608842002) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA050S-36V (0608842003) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXP012QD-36V (0608842005) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA015S-36V-B (0608842006) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA030S-36V-B (0608842007) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA050S-36V-B (0608842008) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXP012QD-36V-B (0608842010) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA011S-36V (0608842011) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA011S-36V-B (0608842012) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA065S-36V (0608842013) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA065S-36V-B (0608842014) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXV012T-36V (0608842015) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXV012T-36V-B (0608842016) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2272) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2301) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2514) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2515) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2666) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2673) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T21:23:39.464Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-48266",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-01-10T15:06:33.549866Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-06-17T20:59:15.373Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Nexo cordless nutrunner NXA015S-36V (0608842001)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA030S-36V (0608842002)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA050S-36V (0608842003)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXP012QD-36V (0608842005)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA015S-36V-B (0608842006)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA030S-36V-B (0608842007)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA050S-36V-B (0608842008)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXP012QD-36V-B (0608842010)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA011S-36V (0608842011)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA011S-36V-B (0608842012)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA065S-36V (0608842013)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA065S-36V-B (0608842014)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXV012T-36V (0608842015)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXV012T-36V-B (0608842016)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2272)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2301)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2514)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2515)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2666)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2673)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "The vulnerability allows an unauthenticated remote attacker to perform a Denial-of-Service (DoS) attack or, possibly, obtain Remote Code Execution (RCE) via a crafted network request."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 8.1,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-121",
                  "description": "CWE-121 Stack-based Buffer Overflow",
                  "lang": "en-US"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-01-10T13:10:15.503Z",
            "orgId": "c95f66b2-7e7c-41c5-8f09-6f86ec68659c",
            "shortName": "bosch"
          },
          "references": [
            {
              "name": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "c95f66b2-7e7c-41c5-8f09-6f86ec68659c",
        "assignerShortName": "bosch",
        "cveId": "CVE-2023-48266",
        "datePublished": "2024-01-10T13:10:15.503Z",
        "dateReserved": "2023-11-13T13:44:23.709Z",
        "dateUpdated": "2025-06-17T20:59:15.373Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-48265 (GCVE-0-2023-48265)

    Vulnerability from nvd – Published: 2024-01-10 13:09 – Updated: 2025-06-17 20:59
    VLAI
    Summary
    The vulnerability allows an unauthenticated remote attacker to perform a Denial-of-Service (DoS) attack or, possibly, obtain Remote Code Execution (RCE) via a crafted network request.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-121 - Stack-based Buffer Overflow
    Assigner
    References
    Impacted products
    Vendor Product Version
    Rexroth Nexo cordless nutrunner NXA015S-36V (0608842001) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA030S-36V (0608842002) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA050S-36V (0608842003) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXP012QD-36V (0608842005) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA015S-36V-B (0608842006) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA030S-36V-B (0608842007) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA050S-36V-B (0608842008) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXP012QD-36V-B (0608842010) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA011S-36V (0608842011) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA011S-36V-B (0608842012) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA065S-36V (0608842013) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA065S-36V-B (0608842014) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXV012T-36V (0608842015) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXV012T-36V-B (0608842016) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2272) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2301) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2514) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2515) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2666) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2673) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T21:23:39.430Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-48265",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-01-10T15:05:21.344602Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-06-17T20:59:15.232Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Nexo cordless nutrunner NXA015S-36V (0608842001)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA030S-36V (0608842002)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA050S-36V (0608842003)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXP012QD-36V (0608842005)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA015S-36V-B (0608842006)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA030S-36V-B (0608842007)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA050S-36V-B (0608842008)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXP012QD-36V-B (0608842010)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA011S-36V (0608842011)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA011S-36V-B (0608842012)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA065S-36V (0608842013)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA065S-36V-B (0608842014)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXV012T-36V (0608842015)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXV012T-36V-B (0608842016)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2272)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2301)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2514)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2515)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2666)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2673)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "The vulnerability allows an unauthenticated remote attacker to perform a Denial-of-Service (DoS) attack or, possibly, obtain Remote Code Execution (RCE) via a crafted network request."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 8.1,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-121",
                  "description": "CWE-121 Stack-based Buffer Overflow",
                  "lang": "en-US"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-01-10T13:09:46.605Z",
            "orgId": "c95f66b2-7e7c-41c5-8f09-6f86ec68659c",
            "shortName": "bosch"
          },
          "references": [
            {
              "name": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "c95f66b2-7e7c-41c5-8f09-6f86ec68659c",
        "assignerShortName": "bosch",
        "cveId": "CVE-2023-48265",
        "datePublished": "2024-01-10T13:09:46.605Z",
        "dateReserved": "2023-11-13T13:44:23.708Z",
        "dateUpdated": "2025-06-17T20:59:15.232Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-48264 (GCVE-0-2023-48264)

    Vulnerability from nvd – Published: 2024-01-10 13:09 – Updated: 2025-04-17 15:48
    VLAI
    Summary
    The vulnerability allows an unauthenticated remote attacker to perform a Denial-of-Service (DoS) attack or, possibly, obtain Remote Code Execution (RCE) via a crafted network request.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-121 - Stack-based Buffer Overflow
    Assigner
    References
    Impacted products
    Vendor Product Version
    Rexroth Nexo cordless nutrunner NXA015S-36V (0608842001) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA030S-36V (0608842002) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA050S-36V (0608842003) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXP012QD-36V (0608842005) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA015S-36V-B (0608842006) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA030S-36V-B (0608842007) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA050S-36V-B (0608842008) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXP012QD-36V-B (0608842010) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA011S-36V (0608842011) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA011S-36V-B (0608842012) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA065S-36V (0608842013) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA065S-36V-B (0608842014) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXV012T-36V (0608842015) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXV012T-36V-B (0608842016) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2272) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2301) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2514) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2515) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2666) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2673) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T21:23:39.490Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-48264",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-01-10T15:04:32.720113Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-04-17T15:48:37.330Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Nexo cordless nutrunner NXA015S-36V (0608842001)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA030S-36V (0608842002)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA050S-36V (0608842003)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXP012QD-36V (0608842005)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA015S-36V-B (0608842006)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA030S-36V-B (0608842007)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA050S-36V-B (0608842008)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXP012QD-36V-B (0608842010)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA011S-36V (0608842011)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA011S-36V-B (0608842012)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA065S-36V (0608842013)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA065S-36V-B (0608842014)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXV012T-36V (0608842015)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXV012T-36V-B (0608842016)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2272)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2301)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2514)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2515)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2666)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2673)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "The vulnerability allows an unauthenticated remote attacker to perform a Denial-of-Service (DoS) attack or, possibly, obtain Remote Code Execution (RCE) via a crafted network request."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 8.1,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-121",
                  "description": "CWE-121 Stack-based Buffer Overflow",
                  "lang": "en-US"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-01-10T13:09:10.347Z",
            "orgId": "c95f66b2-7e7c-41c5-8f09-6f86ec68659c",
            "shortName": "bosch"
          },
          "references": [
            {
              "name": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "c95f66b2-7e7c-41c5-8f09-6f86ec68659c",
        "assignerShortName": "bosch",
        "cveId": "CVE-2023-48264",
        "datePublished": "2024-01-10T13:09:10.347Z",
        "dateReserved": "2023-11-13T13:44:23.708Z",
        "dateUpdated": "2025-04-17T15:48:37.330Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-48263 (GCVE-0-2023-48263)

    Vulnerability from nvd – Published: 2024-01-10 13:08 – Updated: 2025-06-17 20:59
    VLAI
    Summary
    The vulnerability allows an unauthenticated remote attacker to perform a Denial-of-Service (DoS) attack or, possibly, obtain Remote Code Execution (RCE) via a crafted network request.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-122 - Heap-based Buffer Overflow
    Assigner
    References
    Impacted products
    Vendor Product Version
    Rexroth Nexo cordless nutrunner NXA015S-36V (0608842001) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA030S-36V (0608842002) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA050S-36V (0608842003) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXP012QD-36V (0608842005) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA015S-36V-B (0608842006) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA030S-36V-B (0608842007) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA050S-36V-B (0608842008) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXP012QD-36V-B (0608842010) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA011S-36V (0608842011) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA011S-36V-B (0608842012) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA065S-36V (0608842013) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA065S-36V-B (0608842014) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXV012T-36V (0608842015) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXV012T-36V-B (0608842016) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2272) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2301) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2514) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2515) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2666) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2673) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T21:23:39.495Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-48263",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-01-10T15:04:52.765341Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-06-17T20:59:15.081Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Nexo cordless nutrunner NXA015S-36V (0608842001)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA030S-36V (0608842002)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA050S-36V (0608842003)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXP012QD-36V (0608842005)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA015S-36V-B (0608842006)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA030S-36V-B (0608842007)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA050S-36V-B (0608842008)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXP012QD-36V-B (0608842010)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA011S-36V (0608842011)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA011S-36V-B (0608842012)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA065S-36V (0608842013)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA065S-36V-B (0608842014)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXV012T-36V (0608842015)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXV012T-36V-B (0608842016)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2272)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2301)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2514)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2515)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2666)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2673)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "The vulnerability allows an unauthenticated remote attacker to perform a Denial-of-Service (DoS) attack or, possibly, obtain Remote Code Execution (RCE) via a crafted network request."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 8.1,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-122",
                  "description": "CWE-122 Heap-based Buffer Overflow",
                  "lang": "en-US"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-01-10T13:08:37.557Z",
            "orgId": "c95f66b2-7e7c-41c5-8f09-6f86ec68659c",
            "shortName": "bosch"
          },
          "references": [
            {
              "name": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "c95f66b2-7e7c-41c5-8f09-6f86ec68659c",
        "assignerShortName": "bosch",
        "cveId": "CVE-2023-48263",
        "datePublished": "2024-01-10T13:08:37.557Z",
        "dateReserved": "2023-11-13T13:44:23.708Z",
        "dateUpdated": "2025-06-17T20:59:15.081Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-48262 (GCVE-0-2023-48262)

    Vulnerability from nvd – Published: 2024-01-10 13:08 – Updated: 2025-06-17 20:59
    VLAI
    Summary
    The vulnerability allows an unauthenticated remote attacker to perform a Denial-of-Service (DoS) attack or, possibly, obtain Remote Code Execution (RCE) via a crafted network request.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-121 - Stack-based Buffer Overflow
    Assigner
    References
    Impacted products
    Vendor Product Version
    Rexroth Nexo cordless nutrunner NXA015S-36V (0608842001) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA030S-36V (0608842002) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA050S-36V (0608842003) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXP012QD-36V (0608842005) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA015S-36V-B (0608842006) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA030S-36V-B (0608842007) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA050S-36V-B (0608842008) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXP012QD-36V-B (0608842010) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA011S-36V (0608842011) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA011S-36V-B (0608842012) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA065S-36V (0608842013) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA065S-36V-B (0608842014) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXV012T-36V (0608842015) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXV012T-36V-B (0608842016) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2272) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2301) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2514) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2515) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2666) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2673) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T21:23:39.475Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-48262",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-01-10T15:00:06.437457Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-06-17T20:59:14.930Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Nexo cordless nutrunner NXA015S-36V (0608842001)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA030S-36V (0608842002)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA050S-36V (0608842003)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXP012QD-36V (0608842005)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA015S-36V-B (0608842006)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA030S-36V-B (0608842007)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA050S-36V-B (0608842008)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXP012QD-36V-B (0608842010)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA011S-36V (0608842011)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA011S-36V-B (0608842012)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA065S-36V (0608842013)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA065S-36V-B (0608842014)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXV012T-36V (0608842015)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXV012T-36V-B (0608842016)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2272)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2301)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2514)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2515)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2666)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2673)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "The vulnerability allows an unauthenticated remote attacker to perform a Denial-of-Service (DoS) attack or, possibly, obtain Remote Code Execution (RCE) via a crafted network request."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 8.1,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-121",
                  "description": "CWE-121 Stack-based Buffer Overflow",
                  "lang": "en-US"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-01-10T13:08:03.996Z",
            "orgId": "c95f66b2-7e7c-41c5-8f09-6f86ec68659c",
            "shortName": "bosch"
          },
          "references": [
            {
              "name": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "c95f66b2-7e7c-41c5-8f09-6f86ec68659c",
        "assignerShortName": "bosch",
        "cveId": "CVE-2023-48262",
        "datePublished": "2024-01-10T13:08:03.996Z",
        "dateReserved": "2023-11-13T13:44:23.708Z",
        "dateUpdated": "2025-06-17T20:59:14.930Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-48261 (GCVE-0-2023-48261)

    Vulnerability from nvd – Published: 2024-01-10 13:07 – Updated: 2025-06-03 14:28
    VLAI
    Summary
    The vulnerability allows a remote unauthenticated attacker to read arbitrary content of the results database via a crafted HTTP request.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-89 - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
    Assigner
    References
    Impacted products
    Vendor Product Version
    Rexroth Nexo cordless nutrunner NXA015S-36V (0608842001) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA030S-36V (0608842002) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA050S-36V (0608842003) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXP012QD-36V (0608842005) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA015S-36V-B (0608842006) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA030S-36V-B (0608842007) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA050S-36V-B (0608842008) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXP012QD-36V-B (0608842010) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA011S-36V (0608842011) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA011S-36V-B (0608842012) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA065S-36V (0608842013) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA065S-36V-B (0608842014) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXV012T-36V (0608842015) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXV012T-36V-B (0608842016) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2272) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2301) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2514) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2515) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2666) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2673) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T21:23:39.485Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-48261",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-05-08T15:43:30.763095Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-89",
                    "description": "CWE-89 Improper Neutralization of Special Elements used in an SQL Command (\u0027SQL Injection\u0027)",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-06-03T14:28:07.088Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Nexo cordless nutrunner NXA015S-36V (0608842001)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA030S-36V (0608842002)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA050S-36V (0608842003)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXP012QD-36V (0608842005)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA015S-36V-B (0608842006)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA030S-36V-B (0608842007)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA050S-36V-B (0608842008)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXP012QD-36V-B (0608842010)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA011S-36V (0608842011)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA011S-36V-B (0608842012)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA065S-36V (0608842013)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA065S-36V-B (0608842014)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXV012T-36V (0608842015)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXV012T-36V-B (0608842016)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2272)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2301)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2514)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2515)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2666)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2673)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "The vulnerability allows a remote unauthenticated attacker to read arbitrary content of the results database via a crafted HTTP request."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 5.3,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-89",
                  "description": "CWE-89 Improper Neutralization of Special Elements used in an SQL Command (\u0027SQL Injection\u0027)",
                  "lang": "en-US"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-01-10T13:07:22.893Z",
            "orgId": "c95f66b2-7e7c-41c5-8f09-6f86ec68659c",
            "shortName": "bosch"
          },
          "references": [
            {
              "name": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "c95f66b2-7e7c-41c5-8f09-6f86ec68659c",
        "assignerShortName": "bosch",
        "cveId": "CVE-2023-48261",
        "datePublished": "2024-01-10T13:07:22.893Z",
        "dateReserved": "2023-11-13T13:44:23.706Z",
        "dateUpdated": "2025-06-03T14:28:07.088Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-48260 (GCVE-0-2023-48260)

    Vulnerability from nvd – Published: 2024-01-10 13:06 – Updated: 2025-06-17 20:59
    VLAI
    Summary
    The vulnerability allows a remote unauthenticated attacker to read arbitrary content of the results database via a crafted HTTP request.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-89 - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
    Assigner
    References
    Impacted products
    Vendor Product Version
    Rexroth Nexo cordless nutrunner NXA015S-36V (0608842001) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA030S-36V (0608842002) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA050S-36V (0608842003) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXP012QD-36V (0608842005) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA015S-36V-B (0608842006) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA030S-36V-B (0608842007) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA050S-36V-B (0608842008) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXP012QD-36V-B (0608842010) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA011S-36V (0608842011) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA011S-36V-B (0608842012) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA065S-36V (0608842013) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA065S-36V-B (0608842014) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXV012T-36V (0608842015) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXV012T-36V-B (0608842016) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2272) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2301) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2514) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2515) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2666) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2673) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T21:23:39.518Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-48260",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-01-10T14:50:15.388787Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-06-17T20:59:14.784Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Nexo cordless nutrunner NXA015S-36V (0608842001)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA030S-36V (0608842002)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA050S-36V (0608842003)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXP012QD-36V (0608842005)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA015S-36V-B (0608842006)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA030S-36V-B (0608842007)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA050S-36V-B (0608842008)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXP012QD-36V-B (0608842010)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA011S-36V (0608842011)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA011S-36V-B (0608842012)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA065S-36V (0608842013)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA065S-36V-B (0608842014)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXV012T-36V (0608842015)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXV012T-36V-B (0608842016)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2272)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2301)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2514)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2515)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2666)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2673)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "The vulnerability allows a remote unauthenticated attacker to read arbitrary content of the results database via a crafted HTTP request."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 5.3,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-89",
                  "description": "CWE-89 Improper Neutralization of Special Elements used in an SQL Command (\u0027SQL Injection\u0027)",
                  "lang": "en-US"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-01-10T13:06:48.658Z",
            "orgId": "c95f66b2-7e7c-41c5-8f09-6f86ec68659c",
            "shortName": "bosch"
          },
          "references": [
            {
              "name": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "c95f66b2-7e7c-41c5-8f09-6f86ec68659c",
        "assignerShortName": "bosch",
        "cveId": "CVE-2023-48260",
        "datePublished": "2024-01-10T13:06:48.658Z",
        "dateReserved": "2023-11-13T13:44:23.706Z",
        "dateUpdated": "2025-06-17T20:59:14.784Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-48259 (GCVE-0-2023-48259)

    Vulnerability from nvd – Published: 2024-01-10 13:05 – Updated: 2025-06-17 20:59
    VLAI
    Summary
    The vulnerability allows a remote unauthenticated attacker to read arbitrary content of the results database via a crafted HTTP request.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-89 - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
    Assigner
    References
    Impacted products
    Vendor Product Version
    Rexroth Nexo cordless nutrunner NXA015S-36V (0608842001) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA030S-36V (0608842002) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA050S-36V (0608842003) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXP012QD-36V (0608842005) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA015S-36V-B (0608842006) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA030S-36V-B (0608842007) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA050S-36V-B (0608842008) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXP012QD-36V-B (0608842010) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA011S-36V (0608842011) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA011S-36V-B (0608842012) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA065S-36V (0608842013) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA065S-36V-B (0608842014) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXV012T-36V (0608842015) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXV012T-36V-B (0608842016) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2272) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2301) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2514) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2515) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2666) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2673) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T21:23:39.455Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-48259",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-01-10T14:52:12.489500Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-06-17T20:59:14.559Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Nexo cordless nutrunner NXA015S-36V (0608842001)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA030S-36V (0608842002)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA050S-36V (0608842003)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXP012QD-36V (0608842005)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA015S-36V-B (0608842006)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA030S-36V-B (0608842007)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA050S-36V-B (0608842008)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXP012QD-36V-B (0608842010)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA011S-36V (0608842011)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA011S-36V-B (0608842012)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA065S-36V (0608842013)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA065S-36V-B (0608842014)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXV012T-36V (0608842015)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXV012T-36V-B (0608842016)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2272)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2301)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2514)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2515)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2666)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2673)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "The vulnerability allows a remote unauthenticated attacker to read arbitrary content of the results database via a crafted HTTP request."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 5.3,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-89",
                  "description": "CWE-89 Improper Neutralization of Special Elements used in an SQL Command (\u0027SQL Injection\u0027)",
                  "lang": "en-US"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-01-10T13:05:41.881Z",
            "orgId": "c95f66b2-7e7c-41c5-8f09-6f86ec68659c",
            "shortName": "bosch"
          },
          "references": [
            {
              "name": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "c95f66b2-7e7c-41c5-8f09-6f86ec68659c",
        "assignerShortName": "bosch",
        "cveId": "CVE-2023-48259",
        "datePublished": "2024-01-10T13:05:41.881Z",
        "dateReserved": "2023-11-13T13:44:23.706Z",
        "dateUpdated": "2025-06-17T20:59:14.559Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-48258 (GCVE-0-2023-48258)

    Vulnerability from nvd – Published: 2024-01-10 13:05 – Updated: 2025-06-17 20:59
    VLAI
    Summary
    The vulnerability allows a remote attacker to delete arbitrary files on the file system via a crafted URL or HTTP request through a victim’s session.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-352 - Cross-Site Request Forgery (CSRF)
    Assigner
    References
    Impacted products
    Vendor Product Version
    Rexroth Nexo cordless nutrunner NXA015S-36V (0608842001) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA030S-36V (0608842002) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA050S-36V (0608842003) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXP012QD-36V (0608842005) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA015S-36V-B (0608842006) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA030S-36V-B (0608842007) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA050S-36V-B (0608842008) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXP012QD-36V-B (0608842010) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA011S-36V (0608842011) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA011S-36V-B (0608842012) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA065S-36V (0608842013) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA065S-36V-B (0608842014) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXV012T-36V (0608842015) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXV012T-36V-B (0608842016) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2272) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2301) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2514) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2515) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2666) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2673) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T21:23:39.480Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-48258",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-01-10T14:55:12.336992Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-06-17T20:59:14.356Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Nexo cordless nutrunner NXA015S-36V (0608842001)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA030S-36V (0608842002)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA050S-36V (0608842003)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXP012QD-36V (0608842005)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA015S-36V-B (0608842006)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA030S-36V-B (0608842007)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA050S-36V-B (0608842008)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXP012QD-36V-B (0608842010)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA011S-36V (0608842011)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA011S-36V-B (0608842012)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA065S-36V (0608842013)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA065S-36V-B (0608842014)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXV012T-36V (0608842015)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXV012T-36V-B (0608842016)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2272)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2301)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2514)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2515)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2666)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2673)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "The vulnerability allows a remote attacker to delete arbitrary files on the file system via a crafted URL or HTTP\r\nrequest through a victim\u2019s session."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "HIGH",
                "baseScore": 5.5,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-352",
                  "description": "CWE-352 Cross-Site Request Forgery (CSRF)",
                  "lang": "en-US"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-01-10T13:05:08.294Z",
            "orgId": "c95f66b2-7e7c-41c5-8f09-6f86ec68659c",
            "shortName": "bosch"
          },
          "references": [
            {
              "name": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "c95f66b2-7e7c-41c5-8f09-6f86ec68659c",
        "assignerShortName": "bosch",
        "cveId": "CVE-2023-48258",
        "datePublished": "2024-01-10T13:05:08.294Z",
        "dateReserved": "2023-11-13T13:44:23.706Z",
        "dateUpdated": "2025-06-17T20:59:14.356Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-48257 (GCVE-0-2023-48257)

    Vulnerability from nvd – Published: 2024-01-10 13:04 – Updated: 2025-06-17 20:59
    VLAI
    Summary
    The vulnerability allows a remote attacker to access sensitive data inside exported packages or obtain up to Remote Code Execution (RCE) with root privileges on the device. The vulnerability can be exploited directly by authenticated users, via crafted HTTP requests, or indirectly by unauthenticated users, by accessing already-exported backup packages, or crafting an import package and inducing an authenticated victim into sending the HTTP upload request.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    Impacted products
    Vendor Product Version
    Rexroth Nexo cordless nutrunner NXA015S-36V (0608842001) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA030S-36V (0608842002) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA050S-36V (0608842003) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXP012QD-36V (0608842005) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA015S-36V-B (0608842006) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA030S-36V-B (0608842007) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA050S-36V-B (0608842008) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXP012QD-36V-B (0608842010) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA011S-36V (0608842011) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA011S-36V-B (0608842012) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA065S-36V (0608842013) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA065S-36V-B (0608842014) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXV012T-36V (0608842015) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXV012T-36V-B (0608842016) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2272) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2301) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2514) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2515) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2666) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2673) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T21:23:39.464Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-48257",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-01-10T14:55:09.799098Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-06-17T20:59:14.230Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Nexo cordless nutrunner NXA015S-36V (0608842001)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA030S-36V (0608842002)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA050S-36V (0608842003)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXP012QD-36V (0608842005)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA015S-36V-B (0608842006)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA030S-36V-B (0608842007)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA050S-36V-B (0608842008)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXP012QD-36V-B (0608842010)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA011S-36V (0608842011)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA011S-36V-B (0608842012)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA065S-36V (0608842013)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA065S-36V-B (0608842014)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXV012T-36V (0608842015)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXV012T-36V-B (0608842016)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2272)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2301)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2514)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2515)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2666)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2673)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "The vulnerability allows a remote attacker to access sensitive data inside exported packages or obtain up to Remote Code Execution (RCE) with root privileges on the device. The vulnerability can be exploited directly by authenticated users, via crafted HTTP requests, or indirectly by unauthenticated users, by accessing already-exported backup packages, or crafting an import package and inducing an authenticated victim into sending the HTTP upload request."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "HIGH",
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-1391",
                  "description": "n/a",
                  "lang": "en-US"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-01-10T13:04:36.606Z",
            "orgId": "c95f66b2-7e7c-41c5-8f09-6f86ec68659c",
            "shortName": "bosch"
          },
          "references": [
            {
              "name": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "c95f66b2-7e7c-41c5-8f09-6f86ec68659c",
        "assignerShortName": "bosch",
        "cveId": "CVE-2023-48257",
        "datePublished": "2024-01-10T13:04:36.606Z",
        "dateReserved": "2023-11-13T13:44:23.705Z",
        "dateUpdated": "2025-06-17T20:59:14.230Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-48256 (GCVE-0-2023-48256)

    Vulnerability from nvd – Published: 2024-01-10 13:04 – Updated: 2025-06-17 20:59
    VLAI
    Summary
    The vulnerability allows a remote attacker to inject arbitrary HTTP response headers or manipulate HTTP response bodies inside a victim’s session via a crafted URL or HTTP request.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-113 - Improper Neutralization of CRLF Sequences in HTTP Headers ('HTTP Response Splitting')
    Assigner
    References
    Impacted products
    Vendor Product Version
    Rexroth Nexo cordless nutrunner NXA015S-36V (0608842001) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA030S-36V (0608842002) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA050S-36V (0608842003) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXP012QD-36V (0608842005) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA015S-36V-B (0608842006) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA030S-36V-B (0608842007) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA050S-36V-B (0608842008) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXP012QD-36V-B (0608842010) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA011S-36V (0608842011) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA011S-36V-B (0608842012) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA065S-36V (0608842013) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA065S-36V-B (0608842014) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXV012T-36V (0608842015) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXV012T-36V-B (0608842016) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2272) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2301) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2514) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2515) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2666) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2673) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T21:23:39.434Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-48256",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-01-10T14:55:07.287858Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-06-17T20:59:14.100Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Nexo cordless nutrunner NXA015S-36V (0608842001)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA030S-36V (0608842002)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA050S-36V (0608842003)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXP012QD-36V (0608842005)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA015S-36V-B (0608842006)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA030S-36V-B (0608842007)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA050S-36V-B (0608842008)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXP012QD-36V-B (0608842010)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA011S-36V (0608842011)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA011S-36V-B (0608842012)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA065S-36V (0608842013)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA065S-36V-B (0608842014)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXV012T-36V (0608842015)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXV012T-36V-B (0608842016)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2272)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2301)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2514)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2515)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2666)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2673)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "The vulnerability allows a remote attacker to inject arbitrary HTTP response headers or manipulate HTTP response bodies inside a victim\u2019s session via a crafted URL or HTTP request."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "LOW",
                "baseScore": 5.3,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "LOW",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-113",
                  "description": "CWE-113 Improper Neutralization of CRLF Sequences in HTTP Headers (\u0027HTTP Response Splitting\u0027)",
                  "lang": "en-US"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-01-10T13:04:04.926Z",
            "orgId": "c95f66b2-7e7c-41c5-8f09-6f86ec68659c",
            "shortName": "bosch"
          },
          "references": [
            {
              "name": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "c95f66b2-7e7c-41c5-8f09-6f86ec68659c",
        "assignerShortName": "bosch",
        "cveId": "CVE-2023-48256",
        "datePublished": "2024-01-10T13:04:04.926Z",
        "dateReserved": "2023-11-13T13:44:23.705Z",
        "dateUpdated": "2025-06-17T20:59:14.100Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-48255 (GCVE-0-2023-48255)

    Vulnerability from nvd – Published: 2024-01-10 13:03 – Updated: 2025-06-17 20:59
    VLAI
    Summary
    The vulnerability allows an unauthenticated remote attacker to send malicious network requests containing arbitrary client-side script code and obtain its execution inside a victim’s session via a crafted URL, HTTP request, or simply by waiting for the victim to view the poisoned log.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
    Assigner
    References
    Impacted products
    Vendor Product Version
    Rexroth Nexo cordless nutrunner NXA015S-36V (0608842001) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA030S-36V (0608842002) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA050S-36V (0608842003) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXP012QD-36V (0608842005) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA015S-36V-B (0608842006) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA030S-36V-B (0608842007) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA050S-36V-B (0608842008) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXP012QD-36V-B (0608842010) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA011S-36V (0608842011) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA011S-36V-B (0608842012) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA065S-36V (0608842013) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA065S-36V-B (0608842014) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXV012T-36V (0608842015) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXV012T-36V-B (0608842016) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2272) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2301) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2514) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2515) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2666) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2673) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T21:23:39.444Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-48255",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-01-10T14:55:04.695183Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-06-17T20:59:13.975Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Nexo cordless nutrunner NXA015S-36V (0608842001)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA030S-36V (0608842002)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA050S-36V (0608842003)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXP012QD-36V (0608842005)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA015S-36V-B (0608842006)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA030S-36V-B (0608842007)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA050S-36V-B (0608842008)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXP012QD-36V-B (0608842010)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA011S-36V (0608842011)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA011S-36V-B (0608842012)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA065S-36V (0608842013)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA065S-36V-B (0608842014)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXV012T-36V (0608842015)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXV012T-36V-B (0608842016)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2272)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2301)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2514)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2515)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2666)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2673)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "The vulnerability allows an unauthenticated remote attacker to send malicious network requests containing arbitrary client-side script code and obtain its execution inside a victim\u2019s session via a crafted URL, HTTP request, or simply by waiting for the victim to view the poisoned log."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "LOW",
                "baseScore": 6.3,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "LOW",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-79",
                  "description": "CWE-79 Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
                  "lang": "en-US"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-01-10T13:03:32.151Z",
            "orgId": "c95f66b2-7e7c-41c5-8f09-6f86ec68659c",
            "shortName": "bosch"
          },
          "references": [
            {
              "name": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "c95f66b2-7e7c-41c5-8f09-6f86ec68659c",
        "assignerShortName": "bosch",
        "cveId": "CVE-2023-48255",
        "datePublished": "2024-01-10T13:03:32.151Z",
        "dateReserved": "2023-11-13T13:44:23.705Z",
        "dateUpdated": "2025-06-17T20:59:13.975Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-48254 (GCVE-0-2023-48254)

    Vulnerability from nvd – Published: 2024-01-10 13:02 – Updated: 2025-06-17 20:59
    VLAI
    Summary
    The vulnerability allows a remote attacker to inject and execute arbitrary client-side script code inside a victim’s session via a crafted URL or HTTP request.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
    Assigner
    References
    Impacted products
    Vendor Product Version
    Rexroth Nexo cordless nutrunner NXA015S-36V (0608842001) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA030S-36V (0608842002) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA050S-36V (0608842003) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXP012QD-36V (0608842005) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA015S-36V-B (0608842006) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA030S-36V-B (0608842007) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA050S-36V-B (0608842008) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXP012QD-36V-B (0608842010) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA011S-36V (0608842011) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA011S-36V-B (0608842012) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA065S-36V (0608842013) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA065S-36V-B (0608842014) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXV012T-36V (0608842015) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXV012T-36V-B (0608842016) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2272) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2301) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2514) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2515) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2666) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2673) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T21:23:39.238Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-48254",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-01-10T14:55:02.282838Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-06-17T20:59:13.843Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Nexo cordless nutrunner NXA015S-36V (0608842001)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA030S-36V (0608842002)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA050S-36V (0608842003)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXP012QD-36V (0608842005)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA015S-36V-B (0608842006)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA030S-36V-B (0608842007)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA050S-36V-B (0608842008)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXP012QD-36V-B (0608842010)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA011S-36V (0608842011)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA011S-36V-B (0608842012)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA065S-36V (0608842013)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA065S-36V-B (0608842014)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXV012T-36V (0608842015)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXV012T-36V-B (0608842016)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2272)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2301)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2514)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2515)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2666)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2673)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "The vulnerability allows a remote attacker to inject and execute arbitrary client-side script code inside a victim\u2019s session via a crafted URL or HTTP request."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "LOW",
                "baseScore": 5.3,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "LOW",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-79",
                  "description": "CWE-79 Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
                  "lang": "en-US"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-01-10T13:02:51.682Z",
            "orgId": "c95f66b2-7e7c-41c5-8f09-6f86ec68659c",
            "shortName": "bosch"
          },
          "references": [
            {
              "name": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "c95f66b2-7e7c-41c5-8f09-6f86ec68659c",
        "assignerShortName": "bosch",
        "cveId": "CVE-2023-48254",
        "datePublished": "2024-01-10T13:02:51.682Z",
        "dateReserved": "2023-11-13T13:44:23.705Z",
        "dateUpdated": "2025-06-17T20:59:13.843Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-48253 (GCVE-0-2023-48253)

    Vulnerability from nvd – Published: 2024-01-10 13:02 – Updated: 2025-06-17 20:59
    VLAI
    Summary
    The vulnerability allows a remote authenticated attacker to read or update arbitrary content of the authentication database via a crafted HTTP request. By abusing this vulnerability it is possible to exfiltrate other users’ password hashes or update them with arbitrary values and access their accounts.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-89 - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
    Assigner
    References
    Impacted products
    Vendor Product Version
    Rexroth Nexo cordless nutrunner NXA015S-36V (0608842001) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA030S-36V (0608842002) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA050S-36V (0608842003) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXP012QD-36V (0608842005) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA015S-36V-B (0608842006) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA030S-36V-B (0608842007) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA050S-36V-B (0608842008) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXP012QD-36V-B (0608842010) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA011S-36V (0608842011) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA011S-36V-B (0608842012) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA065S-36V (0608842013) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA065S-36V-B (0608842014) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXV012T-36V (0608842015) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXV012T-36V-B (0608842016) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2272) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2301) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2514) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2515) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2666) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2673) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T21:23:39.464Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-48253",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-01-10T14:54:59.683932Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-06-17T20:59:13.701Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Nexo cordless nutrunner NXA015S-36V (0608842001)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA030S-36V (0608842002)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA050S-36V (0608842003)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXP012QD-36V (0608842005)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA015S-36V-B (0608842006)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA030S-36V-B (0608842007)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA050S-36V-B (0608842008)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXP012QD-36V-B (0608842010)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA011S-36V (0608842011)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA011S-36V-B (0608842012)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA065S-36V (0608842013)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA065S-36V-B (0608842014)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXV012T-36V (0608842015)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXV012T-36V-B (0608842016)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2272)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2301)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2514)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2515)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2666)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2673)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "The vulnerability allows a remote authenticated attacker to read or update arbitrary content of the authentication database via a crafted HTTP request.\r\nBy abusing this vulnerability it is possible to exfiltrate other users\u2019 password hashes or update them with arbitrary values and access their accounts."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 8.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-89",
                  "description": "CWE-89 Improper Neutralization of Special Elements used in an SQL Command (\u0027SQL Injection\u0027)",
                  "lang": "en-US"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-01-10T13:02:19.652Z",
            "orgId": "c95f66b2-7e7c-41c5-8f09-6f86ec68659c",
            "shortName": "bosch"
          },
          "references": [
            {
              "name": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "c95f66b2-7e7c-41c5-8f09-6f86ec68659c",
        "assignerShortName": "bosch",
        "cveId": "CVE-2023-48253",
        "datePublished": "2024-01-10T13:02:19.652Z",
        "dateReserved": "2023-11-13T13:44:23.705Z",
        "dateUpdated": "2025-06-17T20:59:13.701Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-48252 (GCVE-0-2023-48252)

    Vulnerability from nvd – Published: 2024-01-10 13:01 – Updated: 2025-06-17 20:59
    VLAI
    Summary
    The vulnerability allows an authenticated remote attacker to perform actions exceeding their authorized access via crafted HTTP requests.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    Impacted products
    Vendor Product Version
    Rexroth Nexo cordless nutrunner NXA015S-36V (0608842001) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA030S-36V (0608842002) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA050S-36V (0608842003) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXP012QD-36V (0608842005) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA015S-36V-B (0608842006) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA030S-36V-B (0608842007) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA050S-36V-B (0608842008) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXP012QD-36V-B (0608842010) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA011S-36V (0608842011) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA011S-36V-B (0608842012) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA065S-36V (0608842013) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA065S-36V-B (0608842014) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXV012T-36V (0608842015) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXV012T-36V-B (0608842016) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2272) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2301) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2514) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2515) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2666) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2673) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T21:23:39.489Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-48252",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-01-10T14:54:56.667449Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-06-17T20:59:13.576Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Nexo cordless nutrunner NXA015S-36V (0608842001)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA030S-36V (0608842002)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA050S-36V (0608842003)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXP012QD-36V (0608842005)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA015S-36V-B (0608842006)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA030S-36V-B (0608842007)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA050S-36V-B (0608842008)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXP012QD-36V-B (0608842010)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA011S-36V (0608842011)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA011S-36V-B (0608842012)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA065S-36V (0608842013)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA065S-36V-B (0608842014)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXV012T-36V (0608842015)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXV012T-36V-B (0608842016)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2272)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2301)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2514)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2515)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2666)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2673)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "The vulnerability allows an authenticated remote attacker to perform actions exceeding their authorized access via crafted HTTP requests."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 8.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-285",
                  "description": "CWE-285 Improper Authorization",
                  "lang": "en-US"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-01-10T13:01:35.579Z",
            "orgId": "c95f66b2-7e7c-41c5-8f09-6f86ec68659c",
            "shortName": "bosch"
          },
          "references": [
            {
              "name": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "c95f66b2-7e7c-41c5-8f09-6f86ec68659c",
        "assignerShortName": "bosch",
        "cveId": "CVE-2023-48252",
        "datePublished": "2024-01-10T13:01:35.579Z",
        "dateReserved": "2023-11-13T13:44:23.704Z",
        "dateUpdated": "2025-06-17T20:59:13.576Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-48251 (GCVE-0-2023-48251)

    Vulnerability from nvd – Published: 2024-01-10 13:00 – Updated: 2025-06-17 20:59
    VLAI
    Summary
    The vulnerability allows a remote attacker to authenticate to the SSH service with root privileges through a hidden hard-coded account.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-798 - Use of Hard-coded Credentials
    Assigner
    References
    Impacted products
    Vendor Product Version
    Rexroth Nexo cordless nutrunner NXA015S-36V (0608842001) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA030S-36V (0608842002) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA050S-36V (0608842003) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXP012QD-36V (0608842005) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA015S-36V-B (0608842006) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA030S-36V-B (0608842007) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA050S-36V-B (0608842008) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXP012QD-36V-B (0608842010) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA011S-36V (0608842011) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA011S-36V-B (0608842012) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA065S-36V (0608842013) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA065S-36V-B (0608842014) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXV012T-36V (0608842015) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXV012T-36V-B (0608842016) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2272) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2301) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2514) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2515) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2666) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2673) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T21:23:39.227Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-48251",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-01-10T14:54:53.623396Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-06-17T20:59:13.437Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Nexo cordless nutrunner NXA015S-36V (0608842001)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA030S-36V (0608842002)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA050S-36V (0608842003)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXP012QD-36V (0608842005)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA015S-36V-B (0608842006)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA030S-36V-B (0608842007)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA050S-36V-B (0608842008)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXP012QD-36V-B (0608842010)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA011S-36V (0608842011)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA011S-36V-B (0608842012)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA065S-36V (0608842013)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA065S-36V-B (0608842014)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXV012T-36V (0608842015)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXV012T-36V-B (0608842016)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2272)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2301)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2514)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2515)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2666)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2673)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "The vulnerability allows a remote attacker to authenticate to the SSH service with root privileges through a hidden hard-coded account."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 8.1,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-798",
                  "description": "CWE-798 Use of Hard-coded Credentials",
                  "lang": "en-US"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-01-10T13:00:29.554Z",
            "orgId": "c95f66b2-7e7c-41c5-8f09-6f86ec68659c",
            "shortName": "bosch"
          },
          "references": [
            {
              "name": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "c95f66b2-7e7c-41c5-8f09-6f86ec68659c",
        "assignerShortName": "bosch",
        "cveId": "CVE-2023-48251",
        "datePublished": "2024-01-10T13:00:29.554Z",
        "dateReserved": "2023-11-13T13:44:23.704Z",
        "dateUpdated": "2025-06-17T20:59:13.437Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-48266 (GCVE-0-2023-48266)

    Vulnerability from cvelistv5 – Published: 2024-01-10 13:10 – Updated: 2025-06-17 20:59
    VLAI
    Summary
    The vulnerability allows an unauthenticated remote attacker to perform a Denial-of-Service (DoS) attack or, possibly, obtain Remote Code Execution (RCE) via a crafted network request.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-121 - Stack-based Buffer Overflow
    Assigner
    References
    Impacted products
    Vendor Product Version
    Rexroth Nexo cordless nutrunner NXA015S-36V (0608842001) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA030S-36V (0608842002) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA050S-36V (0608842003) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXP012QD-36V (0608842005) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA015S-36V-B (0608842006) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA030S-36V-B (0608842007) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA050S-36V-B (0608842008) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXP012QD-36V-B (0608842010) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA011S-36V (0608842011) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA011S-36V-B (0608842012) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA065S-36V (0608842013) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA065S-36V-B (0608842014) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXV012T-36V (0608842015) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXV012T-36V-B (0608842016) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2272) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2301) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2514) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2515) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2666) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2673) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T21:23:39.464Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-48266",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-01-10T15:06:33.549866Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-06-17T20:59:15.373Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Nexo cordless nutrunner NXA015S-36V (0608842001)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA030S-36V (0608842002)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA050S-36V (0608842003)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXP012QD-36V (0608842005)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA015S-36V-B (0608842006)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA030S-36V-B (0608842007)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA050S-36V-B (0608842008)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXP012QD-36V-B (0608842010)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA011S-36V (0608842011)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA011S-36V-B (0608842012)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA065S-36V (0608842013)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA065S-36V-B (0608842014)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXV012T-36V (0608842015)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXV012T-36V-B (0608842016)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2272)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2301)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2514)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2515)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2666)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2673)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "The vulnerability allows an unauthenticated remote attacker to perform a Denial-of-Service (DoS) attack or, possibly, obtain Remote Code Execution (RCE) via a crafted network request."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 8.1,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-121",
                  "description": "CWE-121 Stack-based Buffer Overflow",
                  "lang": "en-US"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-01-10T13:10:15.503Z",
            "orgId": "c95f66b2-7e7c-41c5-8f09-6f86ec68659c",
            "shortName": "bosch"
          },
          "references": [
            {
              "name": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "c95f66b2-7e7c-41c5-8f09-6f86ec68659c",
        "assignerShortName": "bosch",
        "cveId": "CVE-2023-48266",
        "datePublished": "2024-01-10T13:10:15.503Z",
        "dateReserved": "2023-11-13T13:44:23.709Z",
        "dateUpdated": "2025-06-17T20:59:15.373Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-48265 (GCVE-0-2023-48265)

    Vulnerability from cvelistv5 – Published: 2024-01-10 13:09 – Updated: 2025-06-17 20:59
    VLAI
    Summary
    The vulnerability allows an unauthenticated remote attacker to perform a Denial-of-Service (DoS) attack or, possibly, obtain Remote Code Execution (RCE) via a crafted network request.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-121 - Stack-based Buffer Overflow
    Assigner
    References
    Impacted products
    Vendor Product Version
    Rexroth Nexo cordless nutrunner NXA015S-36V (0608842001) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA030S-36V (0608842002) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA050S-36V (0608842003) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXP012QD-36V (0608842005) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA015S-36V-B (0608842006) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA030S-36V-B (0608842007) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA050S-36V-B (0608842008) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXP012QD-36V-B (0608842010) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA011S-36V (0608842011) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA011S-36V-B (0608842012) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA065S-36V (0608842013) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA065S-36V-B (0608842014) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXV012T-36V (0608842015) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXV012T-36V-B (0608842016) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2272) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2301) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2514) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2515) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2666) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2673) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T21:23:39.430Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-48265",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-01-10T15:05:21.344602Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-06-17T20:59:15.232Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Nexo cordless nutrunner NXA015S-36V (0608842001)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA030S-36V (0608842002)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA050S-36V (0608842003)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXP012QD-36V (0608842005)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA015S-36V-B (0608842006)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA030S-36V-B (0608842007)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA050S-36V-B (0608842008)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXP012QD-36V-B (0608842010)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA011S-36V (0608842011)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA011S-36V-B (0608842012)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA065S-36V (0608842013)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA065S-36V-B (0608842014)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXV012T-36V (0608842015)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXV012T-36V-B (0608842016)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2272)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2301)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2514)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2515)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2666)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2673)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "The vulnerability allows an unauthenticated remote attacker to perform a Denial-of-Service (DoS) attack or, possibly, obtain Remote Code Execution (RCE) via a crafted network request."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 8.1,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-121",
                  "description": "CWE-121 Stack-based Buffer Overflow",
                  "lang": "en-US"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-01-10T13:09:46.605Z",
            "orgId": "c95f66b2-7e7c-41c5-8f09-6f86ec68659c",
            "shortName": "bosch"
          },
          "references": [
            {
              "name": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "c95f66b2-7e7c-41c5-8f09-6f86ec68659c",
        "assignerShortName": "bosch",
        "cveId": "CVE-2023-48265",
        "datePublished": "2024-01-10T13:09:46.605Z",
        "dateReserved": "2023-11-13T13:44:23.708Z",
        "dateUpdated": "2025-06-17T20:59:15.232Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-48264 (GCVE-0-2023-48264)

    Vulnerability from cvelistv5 – Published: 2024-01-10 13:09 – Updated: 2025-04-17 15:48
    VLAI
    Summary
    The vulnerability allows an unauthenticated remote attacker to perform a Denial-of-Service (DoS) attack or, possibly, obtain Remote Code Execution (RCE) via a crafted network request.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-121 - Stack-based Buffer Overflow
    Assigner
    References
    Impacted products
    Vendor Product Version
    Rexroth Nexo cordless nutrunner NXA015S-36V (0608842001) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA030S-36V (0608842002) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA050S-36V (0608842003) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXP012QD-36V (0608842005) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA015S-36V-B (0608842006) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA030S-36V-B (0608842007) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA050S-36V-B (0608842008) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXP012QD-36V-B (0608842010) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA011S-36V (0608842011) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA011S-36V-B (0608842012) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA065S-36V (0608842013) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA065S-36V-B (0608842014) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXV012T-36V (0608842015) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXV012T-36V-B (0608842016) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2272) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2301) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2514) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2515) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2666) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2673) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T21:23:39.490Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-48264",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-01-10T15:04:32.720113Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-04-17T15:48:37.330Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Nexo cordless nutrunner NXA015S-36V (0608842001)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA030S-36V (0608842002)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA050S-36V (0608842003)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXP012QD-36V (0608842005)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA015S-36V-B (0608842006)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA030S-36V-B (0608842007)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA050S-36V-B (0608842008)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXP012QD-36V-B (0608842010)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA011S-36V (0608842011)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA011S-36V-B (0608842012)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA065S-36V (0608842013)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA065S-36V-B (0608842014)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXV012T-36V (0608842015)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXV012T-36V-B (0608842016)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2272)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2301)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2514)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2515)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2666)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2673)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "The vulnerability allows an unauthenticated remote attacker to perform a Denial-of-Service (DoS) attack or, possibly, obtain Remote Code Execution (RCE) via a crafted network request."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 8.1,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-121",
                  "description": "CWE-121 Stack-based Buffer Overflow",
                  "lang": "en-US"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-01-10T13:09:10.347Z",
            "orgId": "c95f66b2-7e7c-41c5-8f09-6f86ec68659c",
            "shortName": "bosch"
          },
          "references": [
            {
              "name": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "c95f66b2-7e7c-41c5-8f09-6f86ec68659c",
        "assignerShortName": "bosch",
        "cveId": "CVE-2023-48264",
        "datePublished": "2024-01-10T13:09:10.347Z",
        "dateReserved": "2023-11-13T13:44:23.708Z",
        "dateUpdated": "2025-04-17T15:48:37.330Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-48263 (GCVE-0-2023-48263)

    Vulnerability from cvelistv5 – Published: 2024-01-10 13:08 – Updated: 2025-06-17 20:59
    VLAI
    Summary
    The vulnerability allows an unauthenticated remote attacker to perform a Denial-of-Service (DoS) attack or, possibly, obtain Remote Code Execution (RCE) via a crafted network request.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-122 - Heap-based Buffer Overflow
    Assigner
    References
    Impacted products
    Vendor Product Version
    Rexroth Nexo cordless nutrunner NXA015S-36V (0608842001) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA030S-36V (0608842002) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA050S-36V (0608842003) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXP012QD-36V (0608842005) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA015S-36V-B (0608842006) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA030S-36V-B (0608842007) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA050S-36V-B (0608842008) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXP012QD-36V-B (0608842010) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA011S-36V (0608842011) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA011S-36V-B (0608842012) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA065S-36V (0608842013) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA065S-36V-B (0608842014) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXV012T-36V (0608842015) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXV012T-36V-B (0608842016) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2272) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2301) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2514) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2515) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2666) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2673) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T21:23:39.495Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-48263",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-01-10T15:04:52.765341Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-06-17T20:59:15.081Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Nexo cordless nutrunner NXA015S-36V (0608842001)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA030S-36V (0608842002)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA050S-36V (0608842003)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXP012QD-36V (0608842005)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA015S-36V-B (0608842006)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA030S-36V-B (0608842007)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA050S-36V-B (0608842008)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXP012QD-36V-B (0608842010)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA011S-36V (0608842011)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA011S-36V-B (0608842012)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA065S-36V (0608842013)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA065S-36V-B (0608842014)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXV012T-36V (0608842015)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXV012T-36V-B (0608842016)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2272)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2301)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2514)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2515)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2666)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2673)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "The vulnerability allows an unauthenticated remote attacker to perform a Denial-of-Service (DoS) attack or, possibly, obtain Remote Code Execution (RCE) via a crafted network request."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 8.1,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-122",
                  "description": "CWE-122 Heap-based Buffer Overflow",
                  "lang": "en-US"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-01-10T13:08:37.557Z",
            "orgId": "c95f66b2-7e7c-41c5-8f09-6f86ec68659c",
            "shortName": "bosch"
          },
          "references": [
            {
              "name": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "c95f66b2-7e7c-41c5-8f09-6f86ec68659c",
        "assignerShortName": "bosch",
        "cveId": "CVE-2023-48263",
        "datePublished": "2024-01-10T13:08:37.557Z",
        "dateReserved": "2023-11-13T13:44:23.708Z",
        "dateUpdated": "2025-06-17T20:59:15.081Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-48262 (GCVE-0-2023-48262)

    Vulnerability from cvelistv5 – Published: 2024-01-10 13:08 – Updated: 2025-06-17 20:59
    VLAI
    Summary
    The vulnerability allows an unauthenticated remote attacker to perform a Denial-of-Service (DoS) attack or, possibly, obtain Remote Code Execution (RCE) via a crafted network request.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-121 - Stack-based Buffer Overflow
    Assigner
    References
    Impacted products
    Vendor Product Version
    Rexroth Nexo cordless nutrunner NXA015S-36V (0608842001) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA030S-36V (0608842002) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA050S-36V (0608842003) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXP012QD-36V (0608842005) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA015S-36V-B (0608842006) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA030S-36V-B (0608842007) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA050S-36V-B (0608842008) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXP012QD-36V-B (0608842010) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA011S-36V (0608842011) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA011S-36V-B (0608842012) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA065S-36V (0608842013) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA065S-36V-B (0608842014) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXV012T-36V (0608842015) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXV012T-36V-B (0608842016) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2272) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2301) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2514) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2515) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2666) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2673) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T21:23:39.475Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-48262",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-01-10T15:00:06.437457Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-06-17T20:59:14.930Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Nexo cordless nutrunner NXA015S-36V (0608842001)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA030S-36V (0608842002)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA050S-36V (0608842003)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXP012QD-36V (0608842005)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA015S-36V-B (0608842006)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA030S-36V-B (0608842007)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA050S-36V-B (0608842008)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXP012QD-36V-B (0608842010)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA011S-36V (0608842011)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA011S-36V-B (0608842012)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA065S-36V (0608842013)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA065S-36V-B (0608842014)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXV012T-36V (0608842015)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXV012T-36V-B (0608842016)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2272)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2301)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2514)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2515)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2666)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2673)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "The vulnerability allows an unauthenticated remote attacker to perform a Denial-of-Service (DoS) attack or, possibly, obtain Remote Code Execution (RCE) via a crafted network request."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 8.1,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-121",
                  "description": "CWE-121 Stack-based Buffer Overflow",
                  "lang": "en-US"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-01-10T13:08:03.996Z",
            "orgId": "c95f66b2-7e7c-41c5-8f09-6f86ec68659c",
            "shortName": "bosch"
          },
          "references": [
            {
              "name": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "c95f66b2-7e7c-41c5-8f09-6f86ec68659c",
        "assignerShortName": "bosch",
        "cveId": "CVE-2023-48262",
        "datePublished": "2024-01-10T13:08:03.996Z",
        "dateReserved": "2023-11-13T13:44:23.708Z",
        "dateUpdated": "2025-06-17T20:59:14.930Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-48261 (GCVE-0-2023-48261)

    Vulnerability from cvelistv5 – Published: 2024-01-10 13:07 – Updated: 2025-06-03 14:28
    VLAI
    Summary
    The vulnerability allows a remote unauthenticated attacker to read arbitrary content of the results database via a crafted HTTP request.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-89 - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
    Assigner
    References
    Impacted products
    Vendor Product Version
    Rexroth Nexo cordless nutrunner NXA015S-36V (0608842001) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA030S-36V (0608842002) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA050S-36V (0608842003) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXP012QD-36V (0608842005) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA015S-36V-B (0608842006) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA030S-36V-B (0608842007) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA050S-36V-B (0608842008) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXP012QD-36V-B (0608842010) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA011S-36V (0608842011) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA011S-36V-B (0608842012) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA065S-36V (0608842013) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA065S-36V-B (0608842014) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXV012T-36V (0608842015) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXV012T-36V-B (0608842016) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2272) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2301) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2514) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2515) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2666) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2673) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T21:23:39.485Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-48261",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-05-08T15:43:30.763095Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-89",
                    "description": "CWE-89 Improper Neutralization of Special Elements used in an SQL Command (\u0027SQL Injection\u0027)",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-06-03T14:28:07.088Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Nexo cordless nutrunner NXA015S-36V (0608842001)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA030S-36V (0608842002)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA050S-36V (0608842003)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXP012QD-36V (0608842005)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA015S-36V-B (0608842006)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA030S-36V-B (0608842007)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA050S-36V-B (0608842008)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXP012QD-36V-B (0608842010)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA011S-36V (0608842011)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA011S-36V-B (0608842012)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA065S-36V (0608842013)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA065S-36V-B (0608842014)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXV012T-36V (0608842015)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXV012T-36V-B (0608842016)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2272)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2301)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2514)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2515)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2666)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2673)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "The vulnerability allows a remote unauthenticated attacker to read arbitrary content of the results database via a crafted HTTP request."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 5.3,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-89",
                  "description": "CWE-89 Improper Neutralization of Special Elements used in an SQL Command (\u0027SQL Injection\u0027)",
                  "lang": "en-US"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-01-10T13:07:22.893Z",
            "orgId": "c95f66b2-7e7c-41c5-8f09-6f86ec68659c",
            "shortName": "bosch"
          },
          "references": [
            {
              "name": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "c95f66b2-7e7c-41c5-8f09-6f86ec68659c",
        "assignerShortName": "bosch",
        "cveId": "CVE-2023-48261",
        "datePublished": "2024-01-10T13:07:22.893Z",
        "dateReserved": "2023-11-13T13:44:23.706Z",
        "dateUpdated": "2025-06-03T14:28:07.088Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-48260 (GCVE-0-2023-48260)

    Vulnerability from cvelistv5 – Published: 2024-01-10 13:06 – Updated: 2025-06-17 20:59
    VLAI
    Summary
    The vulnerability allows a remote unauthenticated attacker to read arbitrary content of the results database via a crafted HTTP request.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-89 - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
    Assigner
    References
    Impacted products
    Vendor Product Version
    Rexroth Nexo cordless nutrunner NXA015S-36V (0608842001) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA030S-36V (0608842002) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA050S-36V (0608842003) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXP012QD-36V (0608842005) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA015S-36V-B (0608842006) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA030S-36V-B (0608842007) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA050S-36V-B (0608842008) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXP012QD-36V-B (0608842010) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA011S-36V (0608842011) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA011S-36V-B (0608842012) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA065S-36V (0608842013) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA065S-36V-B (0608842014) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXV012T-36V (0608842015) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXV012T-36V-B (0608842016) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2272) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2301) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2514) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2515) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2666) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2673) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T21:23:39.518Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-48260",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-01-10T14:50:15.388787Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-06-17T20:59:14.784Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Nexo cordless nutrunner NXA015S-36V (0608842001)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA030S-36V (0608842002)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA050S-36V (0608842003)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXP012QD-36V (0608842005)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA015S-36V-B (0608842006)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA030S-36V-B (0608842007)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA050S-36V-B (0608842008)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXP012QD-36V-B (0608842010)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA011S-36V (0608842011)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA011S-36V-B (0608842012)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA065S-36V (0608842013)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA065S-36V-B (0608842014)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXV012T-36V (0608842015)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXV012T-36V-B (0608842016)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2272)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2301)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2514)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2515)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2666)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2673)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "The vulnerability allows a remote unauthenticated attacker to read arbitrary content of the results database via a crafted HTTP request."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 5.3,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-89",
                  "description": "CWE-89 Improper Neutralization of Special Elements used in an SQL Command (\u0027SQL Injection\u0027)",
                  "lang": "en-US"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-01-10T13:06:48.658Z",
            "orgId": "c95f66b2-7e7c-41c5-8f09-6f86ec68659c",
            "shortName": "bosch"
          },
          "references": [
            {
              "name": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "c95f66b2-7e7c-41c5-8f09-6f86ec68659c",
        "assignerShortName": "bosch",
        "cveId": "CVE-2023-48260",
        "datePublished": "2024-01-10T13:06:48.658Z",
        "dateReserved": "2023-11-13T13:44:23.706Z",
        "dateUpdated": "2025-06-17T20:59:14.784Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-48259 (GCVE-0-2023-48259)

    Vulnerability from cvelistv5 – Published: 2024-01-10 13:05 – Updated: 2025-06-17 20:59
    VLAI
    Summary
    The vulnerability allows a remote unauthenticated attacker to read arbitrary content of the results database via a crafted HTTP request.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-89 - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
    Assigner
    References
    Impacted products
    Vendor Product Version
    Rexroth Nexo cordless nutrunner NXA015S-36V (0608842001) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA030S-36V (0608842002) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA050S-36V (0608842003) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXP012QD-36V (0608842005) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA015S-36V-B (0608842006) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA030S-36V-B (0608842007) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA050S-36V-B (0608842008) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXP012QD-36V-B (0608842010) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA011S-36V (0608842011) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA011S-36V-B (0608842012) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA065S-36V (0608842013) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA065S-36V-B (0608842014) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXV012T-36V (0608842015) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXV012T-36V-B (0608842016) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2272) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2301) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2514) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2515) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2666) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2673) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T21:23:39.455Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-48259",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-01-10T14:52:12.489500Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-06-17T20:59:14.559Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Nexo cordless nutrunner NXA015S-36V (0608842001)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA030S-36V (0608842002)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA050S-36V (0608842003)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXP012QD-36V (0608842005)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA015S-36V-B (0608842006)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA030S-36V-B (0608842007)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA050S-36V-B (0608842008)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXP012QD-36V-B (0608842010)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA011S-36V (0608842011)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA011S-36V-B (0608842012)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA065S-36V (0608842013)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA065S-36V-B (0608842014)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXV012T-36V (0608842015)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXV012T-36V-B (0608842016)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2272)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2301)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2514)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2515)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2666)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2673)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "The vulnerability allows a remote unauthenticated attacker to read arbitrary content of the results database via a crafted HTTP request."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 5.3,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-89",
                  "description": "CWE-89 Improper Neutralization of Special Elements used in an SQL Command (\u0027SQL Injection\u0027)",
                  "lang": "en-US"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-01-10T13:05:41.881Z",
            "orgId": "c95f66b2-7e7c-41c5-8f09-6f86ec68659c",
            "shortName": "bosch"
          },
          "references": [
            {
              "name": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "c95f66b2-7e7c-41c5-8f09-6f86ec68659c",
        "assignerShortName": "bosch",
        "cveId": "CVE-2023-48259",
        "datePublished": "2024-01-10T13:05:41.881Z",
        "dateReserved": "2023-11-13T13:44:23.706Z",
        "dateUpdated": "2025-06-17T20:59:14.559Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-48258 (GCVE-0-2023-48258)

    Vulnerability from cvelistv5 – Published: 2024-01-10 13:05 – Updated: 2025-06-17 20:59
    VLAI
    Summary
    The vulnerability allows a remote attacker to delete arbitrary files on the file system via a crafted URL or HTTP request through a victim’s session.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-352 - Cross-Site Request Forgery (CSRF)
    Assigner
    References
    Impacted products
    Vendor Product Version
    Rexroth Nexo cordless nutrunner NXA015S-36V (0608842001) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA030S-36V (0608842002) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA050S-36V (0608842003) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXP012QD-36V (0608842005) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA015S-36V-B (0608842006) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA030S-36V-B (0608842007) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA050S-36V-B (0608842008) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXP012QD-36V-B (0608842010) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA011S-36V (0608842011) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA011S-36V-B (0608842012) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA065S-36V (0608842013) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA065S-36V-B (0608842014) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXV012T-36V (0608842015) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXV012T-36V-B (0608842016) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2272) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2301) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2514) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2515) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2666) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2673) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T21:23:39.480Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-48258",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-01-10T14:55:12.336992Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-06-17T20:59:14.356Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Nexo cordless nutrunner NXA015S-36V (0608842001)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA030S-36V (0608842002)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA050S-36V (0608842003)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXP012QD-36V (0608842005)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA015S-36V-B (0608842006)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA030S-36V-B (0608842007)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA050S-36V-B (0608842008)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXP012QD-36V-B (0608842010)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA011S-36V (0608842011)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA011S-36V-B (0608842012)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA065S-36V (0608842013)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA065S-36V-B (0608842014)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXV012T-36V (0608842015)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXV012T-36V-B (0608842016)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2272)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2301)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2514)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2515)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2666)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2673)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "The vulnerability allows a remote attacker to delete arbitrary files on the file system via a crafted URL or HTTP\r\nrequest through a victim\u2019s session."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "HIGH",
                "baseScore": 5.5,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-352",
                  "description": "CWE-352 Cross-Site Request Forgery (CSRF)",
                  "lang": "en-US"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-01-10T13:05:08.294Z",
            "orgId": "c95f66b2-7e7c-41c5-8f09-6f86ec68659c",
            "shortName": "bosch"
          },
          "references": [
            {
              "name": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "c95f66b2-7e7c-41c5-8f09-6f86ec68659c",
        "assignerShortName": "bosch",
        "cveId": "CVE-2023-48258",
        "datePublished": "2024-01-10T13:05:08.294Z",
        "dateReserved": "2023-11-13T13:44:23.706Z",
        "dateUpdated": "2025-06-17T20:59:14.356Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-48257 (GCVE-0-2023-48257)

    Vulnerability from cvelistv5 – Published: 2024-01-10 13:04 – Updated: 2025-06-17 20:59
    VLAI
    Summary
    The vulnerability allows a remote attacker to access sensitive data inside exported packages or obtain up to Remote Code Execution (RCE) with root privileges on the device. The vulnerability can be exploited directly by authenticated users, via crafted HTTP requests, or indirectly by unauthenticated users, by accessing already-exported backup packages, or crafting an import package and inducing an authenticated victim into sending the HTTP upload request.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    Impacted products
    Vendor Product Version
    Rexroth Nexo cordless nutrunner NXA015S-36V (0608842001) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA030S-36V (0608842002) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA050S-36V (0608842003) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXP012QD-36V (0608842005) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA015S-36V-B (0608842006) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA030S-36V-B (0608842007) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA050S-36V-B (0608842008) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXP012QD-36V-B (0608842010) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA011S-36V (0608842011) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA011S-36V-B (0608842012) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA065S-36V (0608842013) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA065S-36V-B (0608842014) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXV012T-36V (0608842015) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXV012T-36V-B (0608842016) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2272) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2301) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2514) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2515) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2666) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2673) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T21:23:39.464Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-48257",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-01-10T14:55:09.799098Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-06-17T20:59:14.230Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Nexo cordless nutrunner NXA015S-36V (0608842001)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA030S-36V (0608842002)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA050S-36V (0608842003)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXP012QD-36V (0608842005)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA015S-36V-B (0608842006)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA030S-36V-B (0608842007)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA050S-36V-B (0608842008)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXP012QD-36V-B (0608842010)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA011S-36V (0608842011)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA011S-36V-B (0608842012)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA065S-36V (0608842013)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA065S-36V-B (0608842014)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXV012T-36V (0608842015)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXV012T-36V-B (0608842016)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2272)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2301)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2514)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2515)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2666)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2673)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "The vulnerability allows a remote attacker to access sensitive data inside exported packages or obtain up to Remote Code Execution (RCE) with root privileges on the device. The vulnerability can be exploited directly by authenticated users, via crafted HTTP requests, or indirectly by unauthenticated users, by accessing already-exported backup packages, or crafting an import package and inducing an authenticated victim into sending the HTTP upload request."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "HIGH",
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-1391",
                  "description": "n/a",
                  "lang": "en-US"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-01-10T13:04:36.606Z",
            "orgId": "c95f66b2-7e7c-41c5-8f09-6f86ec68659c",
            "shortName": "bosch"
          },
          "references": [
            {
              "name": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "c95f66b2-7e7c-41c5-8f09-6f86ec68659c",
        "assignerShortName": "bosch",
        "cveId": "CVE-2023-48257",
        "datePublished": "2024-01-10T13:04:36.606Z",
        "dateReserved": "2023-11-13T13:44:23.705Z",
        "dateUpdated": "2025-06-17T20:59:14.230Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-48256 (GCVE-0-2023-48256)

    Vulnerability from cvelistv5 – Published: 2024-01-10 13:04 – Updated: 2025-06-17 20:59
    VLAI
    Summary
    The vulnerability allows a remote attacker to inject arbitrary HTTP response headers or manipulate HTTP response bodies inside a victim’s session via a crafted URL or HTTP request.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-113 - Improper Neutralization of CRLF Sequences in HTTP Headers ('HTTP Response Splitting')
    Assigner
    References
    Impacted products
    Vendor Product Version
    Rexroth Nexo cordless nutrunner NXA015S-36V (0608842001) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA030S-36V (0608842002) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA050S-36V (0608842003) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXP012QD-36V (0608842005) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA015S-36V-B (0608842006) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA030S-36V-B (0608842007) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA050S-36V-B (0608842008) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXP012QD-36V-B (0608842010) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA011S-36V (0608842011) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA011S-36V-B (0608842012) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA065S-36V (0608842013) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA065S-36V-B (0608842014) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXV012T-36V (0608842015) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXV012T-36V-B (0608842016) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2272) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2301) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2514) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2515) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2666) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2673) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T21:23:39.434Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-48256",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-01-10T14:55:07.287858Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-06-17T20:59:14.100Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Nexo cordless nutrunner NXA015S-36V (0608842001)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA030S-36V (0608842002)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA050S-36V (0608842003)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXP012QD-36V (0608842005)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA015S-36V-B (0608842006)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA030S-36V-B (0608842007)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA050S-36V-B (0608842008)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXP012QD-36V-B (0608842010)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA011S-36V (0608842011)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA011S-36V-B (0608842012)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA065S-36V (0608842013)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA065S-36V-B (0608842014)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXV012T-36V (0608842015)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXV012T-36V-B (0608842016)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2272)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2301)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2514)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2515)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2666)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2673)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "The vulnerability allows a remote attacker to inject arbitrary HTTP response headers or manipulate HTTP response bodies inside a victim\u2019s session via a crafted URL or HTTP request."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "LOW",
                "baseScore": 5.3,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "LOW",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-113",
                  "description": "CWE-113 Improper Neutralization of CRLF Sequences in HTTP Headers (\u0027HTTP Response Splitting\u0027)",
                  "lang": "en-US"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-01-10T13:04:04.926Z",
            "orgId": "c95f66b2-7e7c-41c5-8f09-6f86ec68659c",
            "shortName": "bosch"
          },
          "references": [
            {
              "name": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "c95f66b2-7e7c-41c5-8f09-6f86ec68659c",
        "assignerShortName": "bosch",
        "cveId": "CVE-2023-48256",
        "datePublished": "2024-01-10T13:04:04.926Z",
        "dateReserved": "2023-11-13T13:44:23.705Z",
        "dateUpdated": "2025-06-17T20:59:14.100Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-48255 (GCVE-0-2023-48255)

    Vulnerability from cvelistv5 – Published: 2024-01-10 13:03 – Updated: 2025-06-17 20:59
    VLAI
    Summary
    The vulnerability allows an unauthenticated remote attacker to send malicious network requests containing arbitrary client-side script code and obtain its execution inside a victim’s session via a crafted URL, HTTP request, or simply by waiting for the victim to view the poisoned log.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
    Assigner
    References
    Impacted products
    Vendor Product Version
    Rexroth Nexo cordless nutrunner NXA015S-36V (0608842001) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA030S-36V (0608842002) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA050S-36V (0608842003) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXP012QD-36V (0608842005) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA015S-36V-B (0608842006) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA030S-36V-B (0608842007) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA050S-36V-B (0608842008) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXP012QD-36V-B (0608842010) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA011S-36V (0608842011) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA011S-36V-B (0608842012) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA065S-36V (0608842013) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXA065S-36V-B (0608842014) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXV012T-36V (0608842015) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo cordless nutrunner NXV012T-36V-B (0608842016) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2272) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2301) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2514) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2515) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2666) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Rexroth Nexo special cordless nutrunner (0608PE2673) Affected: NEXO-OS V1000-Release , ≤ NEXO-OS V1500-SP2 (custom)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T21:23:39.444Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-48255",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-01-10T14:55:04.695183Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-06-17T20:59:13.975Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Nexo cordless nutrunner NXA015S-36V (0608842001)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA030S-36V (0608842002)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA050S-36V (0608842003)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXP012QD-36V (0608842005)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA015S-36V-B (0608842006)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA030S-36V-B (0608842007)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA050S-36V-B (0608842008)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXP012QD-36V-B (0608842010)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA011S-36V (0608842011)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA011S-36V-B (0608842012)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA065S-36V (0608842013)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXA065S-36V-B (0608842014)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXV012T-36V (0608842015)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo cordless nutrunner NXV012T-36V-B (0608842016)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2272)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2301)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2514)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2515)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2666)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Nexo special cordless nutrunner (0608PE2673)",
              "vendor": "Rexroth",
              "versions": [
                {
                  "lessThanOrEqual": "NEXO-OS V1500-SP2",
                  "status": "affected",
                  "version": "NEXO-OS V1000-Release",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "The vulnerability allows an unauthenticated remote attacker to send malicious network requests containing arbitrary client-side script code and obtain its execution inside a victim\u2019s session via a crafted URL, HTTP request, or simply by waiting for the victim to view the poisoned log."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "LOW",
                "baseScore": 6.3,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "LOW",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-79",
                  "description": "CWE-79 Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
                  "lang": "en-US"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-01-10T13:03:32.151Z",
            "orgId": "c95f66b2-7e7c-41c5-8f09-6f86ec68659c",
            "shortName": "bosch"
          },
          "references": [
            {
              "name": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://psirt.bosch.com/security-advisories/BOSCH-SA-711465.html"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "c95f66b2-7e7c-41c5-8f09-6f86ec68659c",
        "assignerShortName": "bosch",
        "cveId": "CVE-2023-48255",
        "datePublished": "2024-01-10T13:03:32.151Z",
        "dateReserved": "2023-11-13T13:44:23.705Z",
        "dateUpdated": "2025-06-17T20:59:13.975Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }