Vulnerability Details CVE-2023-30638
Atos Unify OpenScape SBC 10 before 10R3.1.3, OpenScape Branch 10 before 10R3.1.2, and OpenScape BCF 10 before 10R10.7.0 allow remote authenticated admins to inject commands.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 69.8%
CVSS Severity
CVSS v3 Score 7.2
References
- https://networks.unify.com/security/advisories/OBSO-2303-02.pdf
- https://www.news.de/technik/856818957/unify-openscape-sbc-und-openscape-branch-gefaehrdet-it-sicherheitswarnung-vom-bsi-und-bug-report-bekannte-schwachstellen-und-sicherheitsluecken/1/
- https://networks.unify.com/security/advisories/OBSO-2303-02.pdf
- https://www.news.de/technik/856818957/unify-openscape-sbc-und-openscape-branch-gefaehrdet-it-sicherheitswarnung-vom-bsi-und-bug-report-bekannte-schwachstellen-und-sicherheitsluecken/1/
Products affected by CVE-2023-30638
-
cpe:2.3:a:atos:unify_openscape_bcf:10
-
cpe:2.3:a:atos:unify_openscape_bcf:10r9.12.1
-
cpe:2.3:a:atos:unify_openscape_branch:10
-
cpe:2.3:a:atos:unify_openscape_branch:10r2.2.1
-
cpe:2.3:a:atos:unify_openscape_session_border_controller:10
-
cpe:2.3:a:atos:unify_openscape_session_border_controller:10r2.2.1