CVE-2023-36619

Name of the Vulnerable Software and Affected Versions Atos Unify OpenScape Session Border Controller versions through V10 R3.01.03 Atos Unify OpenScape Branch (affected versions not specified) Atos Unify OpenScape BCF (affected versions not specified)

Description The issue allows execution of administrative scripts by unauthenticated users due to insufficient input validation in the implementation of the application programming interface of the Session Border Controller's firmware. This can be exploited remotely using HTTP requests, potentially allowing an attacker to perform arbitrary actions.

Recommendations For Atos Unify OpenScape Session Border Controller versions through V10 R3.01.03: Update to a version that addresses the insufficient input validation issue. For Atos Unify OpenScape Branch: At the moment, there is no information about a newer version that contains a fix for this vulnerability. For Atos Unify OpenScape BCF: At the moment, there is no information about a newer version that contains a fix for this vulnerability.