VYPR

Unify OpenScape Voice

by Atos

CVEs (5)

  • CVE-2023-6269CriDec 5, 2023
    risk 0.65cvss 10.0epss 0.02

    An argument injection vulnerability has been identified in the administrative web interface of the Atos Unify OpenScape products "Session Border Controller" (SBC) and "Branch", before version V10 R3.4.0, and OpenScape "BCF" before versions V10R10.12.00 and V10R11.05.02. This…

  • CVE-2023-40263HigFeb 8, 2024
    risk 0.57cvss 8.8epss 0.01

    An issue was discovered in Atos Unify OpenScape Voice Trace Manager V8 before V8 R0.9.11. It allows authenticated command injection via ftp.

  • CVE-2023-30638HigApr 14, 2023
    risk 0.47cvss 7.2epss 0.01

    Atos Unify OpenScape SBC 10 before 10R3.1.3, OpenScape Branch 10 before 10R3.1.2, and OpenScape BCF 10 before 10R10.7.0 allow remote authenticated admins to inject commands.

  • CVE-2023-40262MedFeb 8, 2024
    risk 0.40cvss 6.1epss 0.00

    An issue was discovered in Atos Unify OpenScape Voice Trace Manager V8 before V8 R0.9.11. It allows unauthenticated Stored Cross-Site Scripting (XSS) in the administration component via Access Request.

  • CVE-2023-40264MedFeb 8, 2024
    risk 0.28cvss 4.3epss 0.00

    An issue was discovered in Atos Unify OpenScape Voice Trace Manager V8 before V8 R0.9.11. It allows authenticated path traversal in the user interface.