Vulnerabilities > CVE-2023-35034 - Unspecified vulnerability in Atos products

CVSS 9.8 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

atos

critical

NVD

Published: 2023-06-12

Updated: 2023-06-16

Summary

Atos Unify OpenScape 4000 Assistant V10 R1 before V10 R1.42.0 and V10 R1.34.8 and Manager V10 R1 before V10 R1.42.0 and V10 R1.34.8 allow remote code execution by unauthenticated users, aka OSFOURK-24033.

Vulnerable Configurations

Part	Description	Count
Application	Atos Atos Unify Openscape 4000 Manager 10 Atos Unify Openscape 4000 Assistant 10	4

References

https://networks.unify.com/security/advisories/OBSO-2305-01.pdf
https://www.news.de/technik/856882353/unify-openscape-4000-gefaehrdet-it-sicherheitswarnung-vom-bsi-und-bug-report-bekannte-schwachstellen-und-sicherheitsluecken/1/