Lucene search

[email protected]NVD:CVE-2023-40264

HistoryFeb 08, 2024 - 11:15 p.m.

CVE-2023-40264

2024-02-0823:15:09

CWE-22

[email protected]

web.nvd.nist.gov

atos unify

openscape voice

trace manager

authenticated

path traversal

user interface

CVSS3

4.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

AI Score

4.6

Confidence

High

EPSS

0.001

Percentile

16.2%

JSON

An issue was discovered in Atos Unify OpenScape Voice Trace Manager V8 before V8 R0.9.11. It allows authenticated path traversal in the user interface.

Affected configurations

Nvd

Node

unifyopenscape_voice_trace_manager_v8Range<r0.9.11

VendorProductVersionCPE
unifyopenscape_voice_trace_manager_v8*cpe:2.3:a:unify:openscape_voice_trace_manager_v8:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
unify	openscape_voice_trace_manager_v8	*	cpe:2.3:a:unify:openscape_voice_trace_manager_v8::::::::

References

networks.unify.com/security/advisories/OBSO-2305-02.pdf

CVSS3

4.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

AI Score

4.6

Confidence

High

EPSS

0.001

Percentile

16.2%

JSON

Related for NVD:CVE-2023-40264

vulnrichment1 prion1 cve1 cvelist1