Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2022-36444

An issue was discovered in Atos Unify OpenScape SBC 9 and 10 before 10R2.2.1, Atos Unify OpenScape Branch 9 and 10 before version 10R2.1.1, and Atos Unify OpenScape BCF 10 before 10R9.12.1. A remote code execution vulnerability may allow an unauthenticated attacker (with network access to the admin interface) to disrupt system availability or potentially compromise the confidentiality and integrity of the system.

Published

2022-07-25T06:15:07.210

Last Modified

2024-11-21T07:13:01.607

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 8.6 (HIGH)

Weaknesses

Type: Primary
NVD-CWE-noinfo

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	atos	unify_openscape_bcf	< 10r9.12.1	Yes
Application	atos	unify_openscape_branch	< 10r2.1.1	Yes
Application	atos	unify_openscape_branch	9	Yes
Application	atos	unify_openscape_session_border_controller	< 10r2.2.1	Yes
Application	atos	unify_openscape_session_border_controller	9	Yes

References

https://networks.unify.com/security/advisories/OBSO-2203-01.pdf Vendor Advisory ([email protected])
https://networks.unify.com/security/advisories/OBSO-2203-01.pdf Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)