CVE-2025-48861 Information

Description

A vulnerability in the Task API endpoint of the ctrlX OS setup mechanism allowed a remote unauthenticated attacker to access and extract internal application data including potential debug logs and the version of installed apps.

Reference

https://psirt.bosch.com/security-advisories/BOSCH-SA-129652.html

Related CNNVD

CNNVD-202508-1501 (Published: 2025-08-14)