Lucene search

MitreVULNRICHMENT:CVE-2023-45354

HistoryOct 09, 2023 - 12:00 a.m.

CVE-2023-45354

2023-10-0900:00:00

mitre

github.com

atos unify openscape

remote code execution

web interface

authenticated

cve-2023-45354

ocmp-6589

AI Score

Confidence

Low

SSVC

Exploitation

none

Automatable

Technical Impact

total

JSON

Atos Unify OpenScape Common Management Portal V10 before V10 R4.17.0 and V10 R5.1.0 allows an authenticated remote attacker to execute arbitrary code on the operating system by using the Common Management Portal web interface. This is also known as OCMP-6589.

References

networks.unify.com/security/advisories/OBSO-2306-02.pdf

www.news.de/technik/857003738/unify-openscape-common-management-platform-gefaehrdet-it-sicherheitswarnung-vom-bsi-und-bug-report-update-zu-bekannten-schwachstellen-und-sicherheitsluecken-vom-03-07-2023/1/