Description
A vulnerability in the Task API endpoint of the ctrlX OS setup mechanism allowed a remote, unauthenticated attacker to access and extract internal application data, including potential debug logs and the version of installed apps.
Problem types
CWE-284 Improper Access Control
Product status
2.6.0
3.6.0
References
psirt.bosch.com/security-advisories/BOSCH-SA-129652.html
