CVE-2023-36618

Name of the Vulnerable Software and Affected Versions Atos Unify OpenScape Session Border Controller versions through V10 R3.01.03 Atos Unify OpenScape Branch (affected versions not specified) Atos Unify OpenScape BCF (affected versions not specified)

Description The issue allows execution of OS commands as root user by low-privileged authenticated users. It is related to deficiencies in the authentication procedure. Exploitation of the issue may allow a remote attacker to execute arbitrary code.

Recommendations For Atos Unify OpenScape Session Border Controller versions through V10 R3.01.03, consider restricting access to low-privileged users until a patch is available. For Atos Unify OpenScape Branch and Atos Unify OpenScape BCF, at the moment, there is no information about a newer version that contains a fix for this vulnerability.