CVE-2022-32534 Information

Description

The Bosch Ethernet switch PRA-ES8P2S with software version 1.01.05 and earlier was found to be vulnerable to command injection through its diagnostics web interface. This allows execution of shell commands.

Reference

https://psirt.bosch.com/security-advisories/BOSCH-SA-247052-BT.html