Vulnerability Details CVE-2023-29473
webservice in Atos Unify OpenScape 4000 Platform and OpenScape 4000 Manager Platform 10 R1 before 10 R1.34.4 allows an unauthenticated attacker to run arbitrary commands on the platform operating system and achieve administrative access, aka OSFOURK-23710.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 62.6%
CVSS Severity
CVSS v3 Score 9.8
References
- https://networks.unify.com/security/advisories/OBSO-2303-01.pdf
- https://www.news.de/technik/856806612/unify-openscape-4000-gefaehrdet-it-sicherheitswarnung-vom-bsi-und-bug-report-betroffene-systeme-und-produkte-neue-versionen-und-updates/1/
- https://networks.unify.com/security/advisories/OBSO-2303-01.pdf
- https://www.news.de/technik/856806612/unify-openscape-4000-gefaehrdet-it-sicherheitswarnung-vom-bsi-und-bug-report-betroffene-systeme-und-produkte-neue-versionen-und-updates/1/
Products affected by CVE-2023-29473
-
cpe:2.3:a:atos:unify_openscape_4000:10
-
cpe:2.3:a:atos:unify_openscape_4000_manager:10