CVE-2022-32536 Information

Description

The user access rights validation in the web server of the Bosch Ethernet switch PRA-ES8P2S with software version 1.01.05 was insufficient. This would allow a non-administrator user to obtain administrator user access rights.

Reference

https://psirt.bosch.com/security-advisories/BOSCH-SA-247052-BT.html