Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-6269

An argument injection vulnerability has been identified in the administrative web interface of the Atos Unify OpenScape products "Session Border Controller" (SBC) and "Branch", before version V10 R3.4.0, and OpenScape "BCF" before versions V10R10.12.00 and V10R11.05.02. This allows an unauthenticated attacker to gain root access to the appliance via SSH (scope change) and also bypass authentication for the administrative interface and gain access as an arbitrary (administrative) user.

Published

2023-12-05T08:15:08.020

Last Modified

2024-11-21T08:43:30.003

Status

Modified

Source

551230f0-3615-47bd-b7cc-93e92e730bbf

Severity

CVSSv3.1: 10.0 (CRITICAL)

Weaknesses

Type: Secondary
CWE-88
Type: Primary
CWE-88

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	atos	unify_openscape_bcf	< 10r10.12.00	Yes
Application	atos	unify_openscape_branch	< 10r3.4.0	Yes
Application	atos	unify_openscape_session_border_controller	< 10r3.4.0	Yes

References

http://packetstormsecurity.com/files/176194/Atos-Unify-OpenScape-Authentication-Bypass-Remote-Code-Execution.html (551230f0-3615-47bd-b7cc-93e92e730bbf)
http://seclists.org/fulldisclosure/2023/Dec/16 (551230f0-3615-47bd-b7cc-93e92e730bbf)
https://networks.unify.com/security/advisories/OBSO-2310-01.pdf Vendor Advisory (551230f0-3615-47bd-b7cc-93e92e730bbf)
https://r.sec-consult.com/unifyroot Exploit, Third Party Advisory (551230f0-3615-47bd-b7cc-93e92e730bbf)
http://packetstormsecurity.com/files/176194/Atos-Unify-OpenScape-Authentication-Bypass-Remote-Code-Execution.html (af854a3a-2127-422b-91ae-364da2661108)
http://seclists.org/fulldisclosure/2023/Dec/16 (af854a3a-2127-422b-91ae-364da2661108)
https://networks.unify.com/security/advisories/OBSO-2310-01.pdf Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://r.sec-consult.com/unifyroot Exploit, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)