CVE-2024-33618 HIGH

CVE-2024-33618

Vendor Bosch

Product BVMS

Weakness CWE-400

Published April 15, 2026

Last update April 15, 2026

View on NVD All CVEs

CVSS base score

7.5/10

Attack vector Network

Attack complexity Low

Privileges required None

User interaction None

Confidentiality None

Integrity None

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

What the vulnerability does

01Description

Uncontrolled Resource Consumption in Bosch VMS Central Server in Bosch VMS 12.0.1 allows attackers to consume excessive amounts of disk space via network interface.

Key dates

02Disclosure timeline

April 15, 2026 CVE published

April 15, 2026 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2024-33618 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/400.html

Related vulnerabilities

Identifiers

CVE CVE-2024-33618

CWE CWE-400

CVSS 7.5 / HIGH

Affected versions

Vendor Bosch

Product BVMS

Affected ≥ 6.0 and ≤ 12.0.1

Vendor Bosch

Product BVMS Viewer

Affected ≥ 8.0 and ≤ 12.0.1

Vendor Bosch

Product Bosch DIVAR IP all-in-one 7000 R3

Affected ≥ 10.1 and ≤ 12.0.1

Vendor Bosch

Product Bosch DIVAR IP 7000 R2

Affected ≥ 9.0 and ≤ 12.0.1

Vendor Bosch

Product Bosch DIVAR IP all-in-one 5000

Affected ≥ 9.0 and ≤ 12.0.1

Vendor Bosch

Product Bosch DIVAR IP all-in-one 7000

Affected ≥ 6.0 and ≤ 12.0.1

Vendor Bosch

Product DIVAR IP all-in-one 4000

Affected ≥ 11.1.1 and ≤ 12.0.1

Vendor Bosch

Product DIVAR IP all-in-one 6000

Affected ≥ 11.1.1 and ≤ 12.0.1

CVE-2024-33618

01Description

02Disclosure timeline

03References

04Related CVE