CVE-2023-45351

2023-10-0900:00:00

mitre

www.cve.org

atos unify openscape 4000

command injection

authenticated

osfourk-24039

9.2 High

AI Score

Confidence

High

0.0005 Low

EPSS

Percentile

17.7%

JSON

Atos Unify OpenScape 4000 Assistant V10 R1 before V10 R1.42.1, 4000 Assistant V10 R0, 4000 Manager V10 R1 before V10 R1.42.1, and 4000 Manager V10 R0 allow Authenticated Command Injection via AShbr. This is also known as OSFOURK-24039.

References

networks.unify.com/security/advisories/OBSO-2306-01.pdf

www.news.de/technik/856969401/unify-openscape-4000-gefaehrdet-it-sicherheitswarnung-vom-bsi-und-bug-report-bekannte-schwachstellen-und-sicherheitsluecken/1/