362 matches found
CVE-2023-40262
An issue was discovered in Atos Unify OpenScape Voice Trace Manager V8 before V8 R0.9.11. It allows unauthenticated Stored Cross-Site Scripting XSS in the administration component via Access Request...
CVE-2023-40264
An issue was discovered in Atos Unify OpenScape Voice Trace Manager V8 before V8 R0.9.11. It allows authenticated path traversal in the user interface...
CVE-2023-40264
An issue was discovered in Atos Unify OpenScape Voice Trace Manager V8 before V8 R0.9.11. It allows authenticated path traversal in the user interface...
CVE-2023-40263
An issue was discovered in Atos Unify OpenScape Voice Trace Manager V8 before V8 R0.9.11. It allows authenticated command injection via ftp...
Cross site scripting
An issue was discovered in Atos Unify OpenScape Voice Trace Manager V8 before V8 R0.9.11. It allows unauthenticated Stored Cross-Site Scripting XSS in the administration component via Access Request...
Command injection
An issue was discovered in Atos Unify OpenScape Voice Trace Manager V8 before V8 R0.9.11. It allows authenticated command injection via ftp...
Path traversal
An issue was discovered in Atos Unify OpenScape Voice Trace Manager V8 before V8 R0.9.11. It allows authenticated path traversal in the user interface...
CVE-2023-40265
An issue was discovered in Atos Unify OpenScape Xpressions WebAssistant V7 before V7R1 FR5 HF42 P911. It allows authenticated remote code execution via file upload...
CVE-2023-40266
An issue was discovered in Atos Unify OpenScape Xpressions WebAssistant V7 before V7R1 FR5 HF42 P911. It allows path traversal...
CVE-2023-40265
An issue was discovered in Atos Unify OpenScape Xpressions WebAssistant V7 before V7R1 FR5 HF42 P911. It allows authenticated remote code execution via file upload...
CVE-2023-40266
An issue was discovered in Atos Unify OpenScape Xpressions WebAssistant V7 before V7R1 FR5 HF42 P911. It allows path traversal...
Path traversal
An issue was discovered in Atos Unify OpenScape Xpressions WebAssistant V7 before V7R1 FR5 HF42 P911. It allows path traversal...
Atos Unify OpenScape Path Traversal Vulnerability
Atos Unify OpenScape is a native SIP-based real-time Voice over IP system from Atos Unify. A path traversal vulnerability exists in versions prior to Atos Unify OpenScape Xpressions WebAssistant V7 V7R1 FR5 HF42 P911 that stems from allowing path traversal...
CVE-2023-40264
An issue was discovered in Atos Unify OpenScape Voice Trace Manager V8 before V8 R0.9.11. It allows authenticated path traversal in the user interface...
CVE-2023-40264
An issue was discovered in Atos Unify OpenScape Voice Trace Manager V8 before V8 R0.9.11. It allows authenticated path traversal in the user interface...
PT-2024-12874
Name of the Vulnerable Software and Affected Versions Atos Unify OpenScape Voice Trace Manager versions prior to V8 R0.9.11 Description The issue allows authenticated path traversal in the user interface. Recommendations For versions prior to V8 R0.9.11, update to V8 R0.9.11 or later to resolve t...
PT-2024-12872
Name of the Vulnerable Software and Affected Versions Atos Unify OpenScape Voice Trace Manager versions prior to V8 R0.9.11 Description An issue was discovered in the administration component of Atos Unify OpenScape Voice Trace Manager, allowing unauthenticated Stored Cross-Site Scripting XSS via...
CVE-2023-40265
An issue was discovered in Atos Unify OpenScape Xpressions WebAssistant V7 before V7R1 FR5 HF42 P911. It allows authenticated remote code execution via file upload...
CVE-2023-40262
Atos Unify OpenScape Voice Trace Manager V8 before R0.9.11 is affected by an unauthenticated Stored Cross‑Site Scripting (XSS) vulnerability in the administration component via Access Request. Affected product: OpenScape Voice Trace Manager V8 (pre‑R0.9.11). Root cause: stored XSS in the admin in...
Atos Unify OpenScape Command Injection Vulnerability
Atos Unify OpenScape is a native SIP-based real-time Voice over IP system from Atos Unify. A command injection vulnerability exists in Atos Unify OpenScape Voice Trace Manager V8 V8 prior to R0.9.11, which originates from allowing authenticated command injection via ftp...