high
7.2
CWE
120 121 119
Advisory Published
Updated

CVE-2021-23850: Buffer Overflow vulnerability in the recovery image telnet server

First published: Wed Mar 30 2022(Updated: )

A specially crafted TCP/IP packet may cause a camera recovery image telnet interface to crash. It may also cause a buffer overflow which could enable remote code execution. The recovery image can only be booted with administrative rights or with physical access to the camera and allows the upload of a new firmware in case of a damaged firmware.

Credit: psirt@bosch.com

Affected SoftwareAffected VersionHow to fix
Bosch Autodome IP 4000i Firmware=cpp7.3
Bosch Autodome IP 4000i
Bosch Autodome IP Starlight 5000i Firmware=cpp7.3
Bosch Autodome IP 5000i
Bosch Autodome IP Starlight 5000i=cpp7.3
Bosch Autodome IP Starlight 5000i
Bosch Autodome IP Starlight 7000i Firmware=cpp7.3
Bosch Autodome IP Starlight 7000i
Bosch Dinion IP 3000i Firmware=cpp7.3
Bosch Dinion IP 3000i Firmware
Bosch Dinion IP Bullet 4000i Firmware=cpp7.3
Bosch Dinion IP Bullet 4000i Firmware
Bosch Dinion IP Bullet 5000 Firmware=cpp7.3
Bosch Dinion IP Bullet 5000
Bosch Dinion IP Bullet 5000i Firmware=cpp7.3
Bosch Dinion IP Bullet 5000i Firmware
Bosch Dinion Ip Bullet 6000i Firmware=cpp7.3
Bosch Dinion Ip Bullet 6000i Firmware
Bosch Flexidome IP 3000i Firmware=cpp7.3
Bosch Flexidome IP 3000i Firmware
Bosch Flexidome IP 4000i Firmware=cpp7.3
Bosch Flexidome IP 4000i
Bosch Flexidome IP 5000i Firmware=cpp7.3
Bosch Flexidome IP 5000i
Bosch Flexidome IP Starlight 5000i Firmware=cpp7.3
Bosch Flexidome IP Starlight 5000i Firmware
Bosch Flexidome IP Starlight 8000i=cpp7.3
Bosch Flexidome IP Starlight 8000i
Bosch Mic IP Starlight 7000i=cpp7.3
Bosch Mic IP Starlight 7000i
Bosch Mic IP Starlight 7100i Firmware=cpp7.3
Bosch Mic IP Starlight 7100i
Bosch Mic IP Ultra 7100i Firmware=cpp7.3
Bosch Mic IP Ultra 7100i
Bosch Mic IP Fusion 9000i Firmware=cpp7.3
Bosch Mic IP Fusion 9000i Firmware
Bosch Dinion IP Starlight 6000 Firmware=cpp7
Bosch Dinion IP Starlight 6000
Bosch Dinion IP Starlight 7000 Firmware=cpp7
Bosch Dinion IP Starlight 7000 HD
Bosch Dinion Ip Thermal 8000 Firmware=cpp7
Bosch Dinion Ip Thermal 8000 Firmware
Bosch Flexidome IP Starlight 6000 Firmware=cpp7
Bosch Flexidome IP Starlight 6000
Bosch Flexidome IP Starlight 7000=cpp7
Bosch Flexidome IP Starlight 7000
Bosch Dinion IP Thermal 9000 RM Firmware=cpp7
Bosch Dinion IP Thermal 9000 RM
Bosch Aviotec IP Starlight 8000 Firmware=cpp6
Bosch Aviotec IP Starlight 8000 Firmware
Bosch Dinion IP Starlight 8000 Firmware=cpp6
Bosch Dinion IP Starlight 8000
Bosch Dinion IP Ultra 8000 Firmware=cpp6
Bosch Dinion IP Ultra 8000 Firmware
Bosch Flexidome IP Panoramic 6000 Firmware=cpp6
Bosch Flexidome Ip Panoramic 6000
Bosch Flexidome IP Panoramic 7000 Firmware=cpp6
Bosch Flexidome Ip Panoramic 7000
Bosch Autodome IP 4000 HD Firmware=cpp4
Bosch Autodome IP 4000 HD Firmware
Bosch Autodome IP 5000 HD Firmware=cpp4
Bosch Autodome IP 5000 HD Firmware
Bosch Autodome IP 5000 IR Firmware=cpp4
Bosch Autodome IP 5000 IR Firmware
Bosch Autodome 7000 Firmware=cpp4
Bosch Autodome 7000i
Bosch Dinion HD 1080p Firmware=cpp4
Bosch Dinion HD 1080p
Bosch Dinion HD 1080p HDR Firmware=cpp4
Bosch Dinion HD 1080p
Bosch Dinion HD 720p Firmware=cpp4
Bosch Dinion HD 720p
Bosch Dinion Imager 9000 HD Firmware=cpp4
Bosch Dinion Imager 9000 HD
Bosch Dinion IP Bullet 4000i Firmware=cpp4
Bosch Dinion IP Bullet 4000
Bosch Dinion IP Bullet 5000 Firmware=cpp4
Bosch Dinion IP 4000 HD Firmware=cpp4
Bosch Dinion IP 4000 HD Firmware
Bosch Dinion IP 5000 HD Firmware=cpp4
Bosch Dinion IP 5000 HD
Bosch Dinion IP 5000 MP=cpp4
Bosch Dinion IP 5000 MP
Bosch Dinion IP Starlight 7000 Firmware=cpp4
Bosch Dinion IP Starlight 7000 HD Firmware
Bosch Flexidome Corner 9000 Mp Firmware=cpp4
Bosch Flexidome Corner 9000 Mp Firmware
Bosch Flexidome HD 1080p Firmware=cpp4
Bosch Flexidome HD 1080p
Bosch Vandal-proof Flexidome HD 1080p HDR Firmware=cpp4
Bosch Vandal-proof Flexidome Hd 1080p Hdr
Bosch Vandal-proof Flexidome HD 720p Firmware=cpp4
Bosch Vandal-proof Flexidome HD 720p Firmware
Bosch Vandal-proof Flexidome HD 1080p Firmware=cpp4
Bosch Vandal-proof Flexidome Hd 1080p Hdr
Bosch Vandal-proof Flexidome HD 1080p HDR Firmware=cpp4
Bosch Vandal-proof Flexidome HD 1080p
Bosch Vandal-proof Flexidome HD 720p Firmware=cpp4
Bosch Vandal-proof Flexidome HD 720p Firmware
Bosch Flexidome IP Micro 2000 HD Firmware=cpp4
Bosch Flexidome IP Micro 2000 HD
Bosch Flexidome IP Micro 2000 IP Firmware=cpp4
Bosch Ip Micro 2000
Bosch Flexidome IP Indoor 4000 HD Firmware=cpp4
Bosch Flexidome IP Indoor 4000 HD
Bosch Flexidome IP Indoor 4000 IR=cpp4
Bosch Flexidome IP Indoor 4000 IR
Bosch Flexidome IP Outdoor 4000 HD Firmware=cpp4
Bosch Flexidome IP Outdoor 4000 HD Firmware
Bosch Flexidome Ip Outdoor 4000 Ir Firmware=cpp4
Bosch Flexidome IP Outdoor 4000 IR
Bosch Flexidome IP Indoor 5000 HD Firmware=cpp4
Bosch Flexidome IP Indoor 5000 HD
Bosch Flexidome IP Indoor 5000 MP Firmware=cpp4
Bosch Flexidome IP Indoor 5000 MP Firmware
Bosch Flexidome IP Micro 5000 MP Firmware=cpp4
Bosch Flexidome IP Micro 5000 MP Firmware
Bosch Flexidome IP Outdoor 5000 HD Firmware=cpp4
Bosch Flexidome IP Outdoor 5000 HD Firmware
Bosch Flexidome Ip Outdoor 5000 Mp Firmware=cpp4
Bosch Flexidome IP Outdoor 5000 MP
Bosch Flexidome IP Panoramic 5000=cpp4
Bosch Flexidome IP Panoramic 5000
Bosch IP Bullet 4000 HD Firmware=cpp4
Bosch IP Bullet 4000 HD Firmware
Bosch Ip Bullet 5000 Hd Firmware=cpp4
Bosch Ip Bullet 5000 Hd Firmware
Bosch Ip Micro 2000 Firmware=cpp4
Bosch Ip Micro 2000 Firmware
Bosch Flexidome IP Micro 2000 HD Firmware=cpp4
Bosch Flexidome IP Micro 2000 HD
Bosch Mic Ip Dynamic 7000 Firmware=cpp4
Bosch Mic IP Dynamic 7000
Bosch Mic Ip Starlight 7000 Firmware=cpp4
Bosch Mic Ip Starlight 7000 Firmware
Bosch Tinyon Ip 2000 Firmware=cpp4
Bosch Tinyon Ip 2000 Firmware

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Frequently Asked Questions

  • What is the severity of CVE-2021-23850?

    The severity of CVE-2021-23850 is rated as critical due to potential remote code execution capabilities.

  • How do I fix CVE-2021-23850?

    To fix CVE-2021-23850, it is recommended to update to the latest firmware version that addresses this vulnerability.

  • Which devices are affected by CVE-2021-23850?

    CVE-2021-23850 affects Bosch Autodome IP 4000i, 5000i, Starlight series cameras, and other devices with specific firmware versions.

  • Can CVE-2021-23850 be exploited remotely?

    Yes, CVE-2021-23850 can be exploited remotely if the vulnerable firmware is used.

  • What are the potential impacts of CVE-2021-23850?

    The potential impacts of CVE-2021-23850 include crashing the camera’s interface and enabling unauthorized remote code execution.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203