PT-2023-25105 · Atos · Atos Unify Openscape 4000 Assistant+1
Publicado
2023-06-12
·
Atualizado
2023-06-20
·
CVE-2023-35033
CVSS v3.1
8.8
Alta
| Vetor | AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Atos Unify OpenScape 4000 Assistant versions V10 R0 through V10 R1.34.7
Atos Unify OpenScape 4000 Assistant versions V10 R1 through V10 R1.41.9
Atos Unify OpenScape 4000 Manager versions V10 R0 through V10 R1.34.7
Atos Unify OpenScape 4000 Manager versions V10 R1 through V10 R1.41.9
Description
The issue allows command injection by authenticated users.
Recommendations
For Atos Unify OpenScape 4000 Assistant version V10 R1, update to version V10 R1.42.0 or V10 R1.34.8.
For Atos Unify OpenScape 4000 Assistant version V10 R0, update to version V10 R1.42.0 or V10 R1.34.8.
For Atos Unify OpenScape 4000 Manager version V10 R1, update to version V10 R1.42.0 or V10 R1.34.8.
For Atos Unify OpenScape 4000 Manager version V10 R0, update to version V10 R1.42.0 or V10 R1.34.8.
Correção
Command Injection
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Atos Unify Openscape 4000 Assistant
Atos Unify Openscape 4000 Manager