Bosch VMS Patch for BVMS-12.0.1.375: 419002 - Security Issue
------------------------------------------------------------

Patch ID: 419002
Patch Title: Security Issue
Patch Target Version: BVMS-12.0.1.375


Patch Details:
----------------

This patch fixes issue 419002, preventing security issues.
CVE identification numbers:
CVE-2021-3449  
CVE-2021-23841  
CVE-2020-1971  
CVE-2021-4160  
CVE-2021-23840  
CVE-2022-0778  
CVE-2022-2097  
CVE-2021-3712  
CVE-2021-3711  
CVE-2022-2068  
CVE-2022-1292 
CVE-2023-0465  
CVE-2023-0466  
CVE-2023-3817  
CVE-2022-4304  
CVE-2023-2650 
CVE-2023-0286  
CVE-2023-0464  
CVE-2022-4450  
CVE-2023-0215  
CVE-2023-4807 



Problem Details:
----------------

Issue 419002 caused a security problem via a vulnerability.


Affected Bosch VMS Components / Machines:
-----------------------------------------

- Bosch VMS Management Server


Uninstallation of the Patch:
----------------------------
Logon as a User with 'Administrator rights' or as the 'Administrator' itself
Open 'Control Panel'  'Programs'  'Programs and Features'  'View installed updates'
Select the Patch in the list and press 'Uninstall'

or

Start cmd.exe with 'RunAs Administrator'
Run the following command
msiexec.exe /I {9BA8AC00-FF35-4182-A5A3-5EB6E7CA82F0} MSIPATCHREMOVE={20F703CD-C130-4B0E-BA5A-E8BD2B0932B2} /qb


List of Replaced Files:
-----------------------

- Bosch.VMS.Backend.DeviceAdapter.TattileAdapter.dll [Version 12.0.1.391]
- libcrypto-3-x64.dll [Version 3.0.11.0] exchanges former libcrypto-1_1-x64.dll
- libssl-3-x64.dll [Version 3.0.11.0] exchanges former libssl-1_1-x64.dll
- ntcp.dll [Version 2.2.0.0]
- ntcpsdk.NET.dll [Version 2.2.0.0]
- licenses\opensource\OpenSourceLicenses.txt
- licenses\opensource\component_licenses\tattile_open_source_licenses.txt

