Vulnerabilities > CVE-2023-45349 - Unspecified vulnerability in Atos products

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

NONE

Availability impact

NONE

network

low complexity

atos

NVD

Published: 2023-10-09

Updated: 2023-10-12

Summary

Atos Unify OpenScape 4000 Assistant V10 R1 before V10 R1.34.7, 4000 Assistant V10 R1.42.0, 4000 Assistant V10 R0, 4000 Manager V10 R1 before V10 R1.34.7, 4000 Manager V10 R1.42.0, and 4000 Manager V10 R0 expose sensitive information that may allow lateral movement to the backup system via AShbr. This is also known as OSFOURK-23722.

Vulnerable Configurations

Part	Description	Count
Application	Atos Atos Unify Openscape 4000 Manager 10 Atos Unify Openscape 4000 Assistant 10	6

References

https://www.news.de/technik/856969401/unify-openscape-4000-gefaehrdet-it-sicherheitswarnung-vom-bsi-und-bug-report-bekannte-schwachstellen-und-sicherheitsluecken/1/
https://networks.unify.com/security/advisories/OBSO-2306-01.pdf