Lucene search

[email protected]CVE-2022-36444

HistoryJul 25, 2022 - 6:15 a.m.

CVE-2022-36444

2022-07-2506:15:07

[email protected]

web.nvd.nist.gov

cve-2022-36444

atos unify

openscape

sbc

branch

bcf

rce

vulnerability

nvd

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.7 High

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

74.9%

JSON

An issue was discovered in Atos Unify OpenScape SBC 9 and 10 before 10R2.2.1, Atos Unify OpenScape Branch 9 and 10 before version 10R2.1.1, and Atos Unify OpenScape BCF 10 before 10R9.12.1. A remote code execution vulnerability may allow an unauthenticated attacker (with network access to the admin interface) to disrupt system availability or potentially compromise the confidentiality and integrity of the system.

Affected configurations

NVD

Node

atosunify_openscape_bcfRange10–10r9.12.1

atosunify_openscape_branchRange10–10r2.1.1

atosunify_openscape_branchMatch9

atosunify_openscape_session_border_controllerRange10–10r2.2.1

atosunify_openscape_session_border_controllerMatch9

CPENameOperatorVersion
atos:unify_openscape_bcfatos unify openscape bcflt10r9.12.1
atos:unify_openscape_branchatos unify openscape branchlt10r2.1.1
atos:unify_openscape_branchatos unify openscape brancheq9
atos:unify_openscape_session_border_controlleratos unify openscape session border controllerlt10r2.2.1
atos:unify_openscape_session_border_controlleratos unify openscape session border controllereq9

CPE	Name	Operator	Version
atos:unify_openscape_bcf	atos unify openscape bcf	lt	10r9.12.1
atos:unify_openscape_branch	atos unify openscape branch	lt	10r2.1.1
atos:unify_openscape_branch	atos unify openscape branch	eq	9
atos:unify_openscape_session_border_controller	atos unify openscape session border controller	lt	10r2.2.1
atos:unify_openscape_session_border_controller	atos unify openscape session border controller	eq	9

References

networks.unify.com/security/advisories/OBSO-2203-01.pdf

Social References

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.7 High

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

74.9%

JSON

Related for CVE-2022-36444

cvelist1 prion1 nvd1