CVE-2020-6767: 
Bosch Video Management System (BVMS) vulnerability analysis and mitigation

A path traversal vulnerability (CVE-2020-6767) was discovered in the Bosch Video Management System (BVMS) FileTransferService. The vulnerability was identified during internal product tests and disclosed on January 29, 2020. It affects multiple versions of Bosch BVMS, BVMS Viewer (versions 10.0 <= 10.0.0.1225, 9.0 <= 9.0.0.827, 8.0 <= 8.0.329, and 7.5 and older), and various DIVAR IP models when running vulnerable BVMS versions (Bosch Advisory).

The vulnerability is classified as CWE-22 (Improper Limitation of a Pathname to a Restricted Directory) and received a CVSS v3.1 Base Score of 7.7 (High). The attack vector is network-based, requiring low complexity and authenticated access. The vulnerability exists in the BVMS FileTransferService, which allows an authenticated user to request and fetch arbitrary files from the Central Server machine (Bosch Advisory).

Successful exploitation of this vulnerability has critical confidentiality impacts, allowing authenticated attackers to access arbitrary files from the server operating system where the BVMS server is running. The scope is changed, affecting the entire file system of the server operating system (Bosch Advisory).

Bosch recommends installing security patches for affected versions. For BVMS and BVMS Viewer versions 8.0 and newer, specific security patches are available. Users of version 7.5 and older are advised to upgrade to the latest version. Additionally, Bosch recommends that devices should not be exposed directly to the internet or other insecure networks (Bosch Advisory).