Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-40265

An issue was discovered in Atos Unify OpenScape Xpressions WebAssistant V7 before V7R1 FR5 HF42 P911. It allows authenticated remote code execution via file upload.

Published

2024-02-08T22:15:08.770

Last Modified

2025-05-15T20:15:25.973

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 8.8 (HIGH)

Weaknesses

Type: Primary
CWE-434
Type: Secondary
CWE-434

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	mitel	unify_openscape_xpressions_webassistant	< 7r1_fr5_hf42_p911	Yes

References

https://networks.unify.com/security/advisories/OBSO-2305-03.pdf Vendor Advisory ([email protected])
https://networks.unify.com/security/advisories/OBSO-2305-03.pdf Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)