Remote Code Execution Vulnerability in Atos Unify OpenScape 4000 Assistant and Manager
CVE-2023-35034

9.8CRITICAL

Key Information:

Vendor: Atos
Status: Unify Openscape 4000 Manager; Unify Openscape 4000 Assistant
Vendor: CVE Published:; 12 June 2023

What is CVE-2023-35034?

The Atos Unify OpenScape 4000 Assistant and Manager are vulnerable to remote code execution, allowing unauthenticated users to gain control over the system. This vulnerability affects multiple versions of the software, presenting a significant risk to users who have not applied the latest patches. Organizations using these products are urged to update to the latest versions to mitigate potential exploits. Detailed security advisories highlight the critical nature of this vulnerability and the importance of timely updates.

References

https://networks.unify.com/security/advisories/OBSO-2305-...

https://www.news.de/technik/856882353/unify-openscape-400...

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jun 12, 2023
Vulnerability Reserved
Jun 12, 2023