CVE-2022-46404

Name of the Vulnerable Software and Affected Versions Atos Unify OpenScape 4000 Assistant versions 8 before R2.22.18 Atos Unify OpenScape 4000 Assistant versions 10 before 0.28.13 Atos Unify OpenScape 4000 Assistant versions 10 R1 before R1.34.4 Atos Unify OpenScape 4000 Manager versions 8 before R2.22.18 Atos Unify OpenScape 4000 Manager versions 10 before 0.28.13 Atos Unify OpenScape 4000 Manager versions 10 R1 before R1.34.4

Description A command injection issue has been identified that may allow an unauthenticated attacker to upload arbitrary files and achieve administrative access to the system.

Recommendations For Atos Unify OpenScape 4000 Assistant version 8, update to R2.22.18 or later. For Atos Unify OpenScape 4000 Assistant version 10, update to 0.28.13 or later. For Atos Unify OpenScape 4000 Assistant version 10 R1, update to R1.34.4 or later. For Atos Unify OpenScape 4000 Manager version 8, update to R2.22.18 or later. For Atos Unify OpenScape 4000 Manager version 10, update to 0.28.13 or later. For Atos Unify OpenScape 4000 Manager version 10 R1, update to R1.34.4 or later.