Detections
Analytics
Bosch Security Systems IP Cameras NXP Chip Side-Channel Key Extraction (CVE-2021-3011)
medium Tenable OT Security Plugin ID 505364
Synopsis
The remote OT asset is affected by a vulnerability.Description
Several Bosch IP cameras are built on a hardware platform that uses an NXP SmartMX/P5x secure element affected by an electromagnetic-wave side-channel vulnerability. An attacker with extended physical access to the device could recover the ECDSA private key and clone the device. The issue resides in the built-in hardware component and has no firmware relation: all affected platforms are impacted regardless of the firmware version installed, and the vulnerable chip cannot be updated. The issue only applies when customer-installed ECDSA keys are in use (Bosch ships no default ECDSA keys). Cameras on the CPP13 and CPP14 platforms do not use the vulnerable chip and are not affected.This plugin only works with Tenable.ot.
Please visit https://www.tenable.com/products/tenable-ot for more information.
Solution
Refer to the vendor advisory.See Also
https://psirt.bosch.com/security-advisories/bosch-sa-762869-bt.html
Plugin Details
Severity: Medium
ID: 505364
File Name: tenable_ot_boschsecuritysystems_CVE-2021-3011.nasl
Version: 1.1
Type: Remote
Family: Tenable.ot
Published: 6/17/2026
Updated: 6/17/2026
Supported Sensors: Tenable OT Security
Risk Information
VPR
Risk Factor: Medium
Score: 4.4
CVSS v3
Risk Factor: Medium
Base Score: 4.2
Vector: CVSS:3.0/AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
Vulnerability Information
CPE: cpe:/o:bosch:cpp7.3_firmware, cpe:/o:bosch:cpp6_firmware, cpe:/o:bosch:cpp7_firmware, cpe:/o:bosch:cpp4_firmware
Required KB Items: Tenable.ot/BoschSecuritySystems
Exploit Ease: No known exploits are available
Patch Publication Date: 1/7/2021
Vulnerability Publication Date: 1/7/2021
Reference Information
CVE: CVE-2021-3011
CWE: 670