CVE-2023-45353
Summary
| CVE | CVE-2023-45353 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2023-10-09 04:15:00 UTC |
| Updated | 2023-10-12 18:35:00 UTC |
| Description | Atos Unify OpenScape Common Management Portal V10 before V10 R4.17.0 and V10 R5.1.0 allows an authenticated attacker to execute arbitrary code on the operating system by leveraging the Common Management Portal web interface for Authenticated remote upload and creation of arbitrary files affecting the underlying operating system. This is also known as OCMP-6591. |
Risk And Classification
Problem Types: CWE-434
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Atos | Unify Openscape Common Management | 10 | - | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| networks.unify.com/security/advisories/OBSO-2306-02.pdf | MISC | networks.unify.com | |
| Unify OpenScape Common Management Platform gefährdet: IT-Sicherheitslücke mit hohem Risiko! Warnung erhält Update | news.de | MISC | www.news.de | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.