Vulnerabilities > CVE-2023-45350 - Unspecified vulnerability in Atos Unify Openscape 4000 Manager 10

CVSS 8.8 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

atos

NVD

Published: 2023-10-09

Updated: 2023-10-12

Summary

Atos Unify OpenScape 4000 Manager V10 R1 before V10 R1.42.1 and 4000 Manager V10 R0 allow Privilege escalation that may lead to the ability of an authenticated attacker to run arbitrary code via AScm. This is also known as OSFOURK-24034.

Vulnerable Configurations

Part	Description	Count
Application	Atos Atos Unify Openscape 4000 Manager 10	2

References

https://www.news.de/technik/856969401/unify-openscape-4000-gefaehrdet-it-sicherheitswarnung-vom-bsi-und-bug-report-bekannte-schwachstellen-und-sicherheitsluecken/1/
https://networks.unify.com/security/advisories/OBSO-2306-01.pdf