An issue was discovered in the Bosch Smart Camera App before 1.3.1 for Android. Due to improperly implemented TLS certificate checks, a malicious actor could potentially succeed in executing a man-in-the-middle attack for some connections. (The Bosch Smart Home App is not affected. iOS Apps are not affected.)
References
Link | Resource |
---|---|
https://psirt.bosch.com/Advisory/BOSCH-2019-0202.html | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2019-02-22T13:00:00
Updated: 2019-02-22T13:57:01
Reserved: 2019-02-11T00:00:00
Link: CVE-2019-7728
JSON object: View
NVD Information
Status : Analyzed
Published: 2019-02-22T13:29:00.277
Modified: 2019-02-22T16:10:11.943
Link: CVE-2019-7728
JSON object: View
Redhat Information
No data.
CWE