Lucene search
+L

96 matches found

Prion
Prion
added 2023/04/14 12:15 a.m.25 views

Command injection

Atos Unify OpenScape SBC 10 before 10R3.1.3, OpenScape Branch 10 before 10R3.1.2, and OpenScape BCF 10 before 10R10.7.0 allow remote authenticated admins to inject commands...

5.8CVSS6.7AI score0.00956EPSS
Exploits0References2Affected Software3
Cvelist
Cvelist
added 2023/04/13 12:0 a.m.27 views

CVE-2023-30638

Atos Unify OpenScape SBC 10 before 10R3.1.3, OpenScape Branch 10 before 10R3.1.2, and OpenScape BCF 10 before 10R10.7.0 allow remote authenticated admins to inject commands...

7.2CVSS7AI score0.00956EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/04/13 12:0 a.m.6 views

CVE-2023-30638

Atos Unify OpenScape SBC 10 before 10R3.1.3, OpenScape Branch 10 before 10R3.1.2, and OpenScape BCF 10 before 10R10.7.0 allow remote authenticated admins to inject commands...

7.2CVSS6.7AI score0.00956EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/04/06 12:0 a.m.29 views

CVE-2023-29474

inventory in Atos Unify OpenScape 4000 Platform and OpenScape 4000 Manager Platform 10 R1 before 10 R1.34.4 allows an unauthenticated attacker to run arbitrary commands on the platform operating system and achieve administrative access, aka OSFOURK-23552...

9.8CVSS9.8AI score0.00838EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/04/06 12:0 a.m.22 views

CVE-2023-29473

webservice in Atos Unify OpenScape 4000 Platform and OpenScape 4000 Manager Platform 10 R1 before 10 R1.34.4 allows an unauthenticated attacker to run arbitrary commands on the platform operating system and achieve administrative access, aka OSFOURK-23710...

9.8CVSS9.8AI score0.00838EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/04/06 12:0 a.m.8 views

CVE-2023-29473

webservice in Atos Unify OpenScape 4000 Platform and OpenScape 4000 Manager Platform 10 R1 before 10 R1.34.4 allows an unauthenticated attacker to run arbitrary commands on the platform operating system and achieve administrative access, aka OSFOURK-23710...

9.8CVSS9.7AI score0.00838EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/04/06 12:0 a.m.5 views

PT-2023-22273 · Atos · Atos Unify Openscape 4000 Platform +1

Name of the Vulnerable Software and Affected Versions: Atos Unify OpenScape 4000 Platform versions 10 R1 through 10 R1.34.3 Atos Unify OpenScape 4000 Manager Platform versions 10 R1 through 10 R1.34.3 Description: The issue allows an unauthenticated attacker to run arbitrary commands on the...

9.8CVSS9.6AI score0.00899EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2023/04/06 12:0 a.m.4 views

PT-2023-22271 · Atos · Atos Unify Openscape 4000 Platform +1

Name of the Vulnerable Software and Affected Versions: Atos Unify OpenScape 4000 Platform versions 10 R1 through 10 R1.34.3 Atos Unify OpenScape 4000 Manager Platform versions 10 R1 through 10 R1.34.3 Description: The webservice in the affected platforms allows an unauthenticated attacker to run...

9.8CVSS9.6AI score0.00838EPSS
Exploits0References5
OSV
OSV
added 2022/12/13 9:15 p.m.4 views

CVE-2022-46404

A command injection vulnerability has been identified in Atos Unify OpenScape 4000 Assistant and Unify OpenScape 4000 Manager 8 before R2.22.18, 10 before 0.28.13, and 10 R1 before R1.34.4 that may allow an unauthenticated attacker to upload arbitrary files and achieve administrative access to th...

9.8CVSS5.8AI score0.0181EPSS
Exploits0References2
Prion
Prion
added 2022/12/13 9:15 p.m.20 views

Command injection

A command injection vulnerability has been identified in Atos Unify OpenScape 4000 Assistant and Unify OpenScape 4000 Manager 8 before R2.22.18, 10 before 0.28.13, and 10 R1 before R1.34.4 that may allow an unauthenticated attacker to upload arbitrary files and achieve administrative access to th...

7.5CVSS9.7AI score0.0181EPSS
Exploits0References2Affected Software2
Vulnrichment
Vulnrichment
added 2022/12/13 12:0 a.m.7 views

CVE-2022-46404

A command injection vulnerability has been identified in Atos Unify OpenScape 4000 Assistant and Unify OpenScape 4000 Manager 8 before R2.22.18, 10 before 0.28.13, and 10 R1 before R1.34.4 that may allow an unauthenticated attacker to upload arbitrary files and achieve administrative access to th...

9.8CVSS10AI score0.0181EPSS
Exploits0References2
CNNVD
CNNVD
added 2022/07/25 12:0 a.m.6 views

Atos Unify OpenScape 安全漏洞

Atos Unify OpenScape SBC and others are products of Atos France.Atos Unify OpenScape SBC is a datacenter-ready virtualized security application.Atos Unify OpenScape Branch is a virtual appliance or standard server application.Atos Unify OpenScape BCF is a unified communications and collaboration...

9.8CVSS8.8AI score0.00857EPSS
Exploits0References2
NVD
NVD
added 2020/02/21 4:15 p.m.29 views

CVE-2019-19866

Atos Unify OpenScape UC Web Client V9 before version V9 R4.31.0 and V10 before version V10 R0.6.0 allows remote attackers to obtain sensitive information. By iterating the value of conferenceId to getMailFunction in the JSON API, one can enumerate all conferences scheduled on the platform, with...

7.5CVSS7.5AI score0.01919EPSS
Exploits0References2
Prion
Prion
added 2020/02/21 4:15 p.m.21 views

Design/Logic Flaw

Atos Unify OpenScape UC Web Client V9 before version V9 R4.31.0 and V10 before version V10 R0.6.0 allows remote attackers to obtain sensitive information. By iterating the value of conferenceId to getMailFunction in the JSON API, one can enumerate all conferences scheduled on the platform, with...

5CVSS7.5AI score0.01919EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2020/02/21 3:22 p.m.40 views

CVE-2019-19866

Atos Unify OpenScape UC Web Client V9 before version V9 R4.31.0 and V10 before version V10 R0.6.0 allows remote attackers to obtain sensitive information. By iterating the value of conferenceId to getMailFunction in the JSON API, one can enumerate all conferences scheduled on the platform, with...

7.5AI score0.01919EPSS
Exploits0References2
Prion
Prion
added 2020/01/09 1:15 p.m.26 views

Command injection

Unify OpenStage / OpenScape Desk Phone IP before V3 R3.11.0 SIP has an OS command injection vulnerability in the web based management interface...

10CVSS7.4AI score0.02574EPSS
Exploits0References2Affected Software15
Rows per page
Query Builder