Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-36619

Atos Unify OpenScape Session Border Controller through V10 R3.01.03 allows execution of administrative scripts by unauthenticated users.

Published

2023-10-04T21:15:09.907

Last Modified

2024-11-21T08:10:05.187

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 9.8 (CRITICAL)

Weaknesses

Type: Primary
CWE-20

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	unify	session_border_controller	10_r3.01.03	Yes

References

https://networks.unify.com/security/advisories/OBSO-2307-01.pdf Vendor Advisory ([email protected])
https://packetstormsecurity.com/files/174704/Atos-Unify-OpenScape-Code-Execution-Missing-Authentication.html Exploit, Third Party Advisory, VDB Entry ([email protected])
https://sec-consult.com/vulnerability-lab/advisory/authenticated-remote-code-execution-missing-authentication-atos-unify-openscape/ Exploit, Third Party Advisory ([email protected])
https://networks.unify.com/security/advisories/OBSO-2307-01.pdf Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://packetstormsecurity.com/files/174704/Atos-Unify-OpenScape-Code-Execution-Missing-Authentication.html Exploit, Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)
https://sec-consult.com/vulnerability-lab/advisory/authenticated-remote-code-execution-missing-authentication-atos-unify-openscape/ Exploit, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)