VYPR
Vendor

Atos Unify

Products
6
CVEs
12
Across products
15
Status
Private

Products

6

Recent CVEs

12
  • CVE-2023-6269Dec 5, 2023
    risk 0.00cvss epss 0.02

    An argument injection vulnerability has been identified in the administrative web interface of the Atos Unify OpenScape products "Session Border Controller" (SBC) and "Branch", before version V10 R3.4.0, and OpenScape "BCF" before versions V10R10.12.00 and V10R11.05.02. This…

  • CVE-2023-45353Oct 9, 2023
    risk 0.00cvss epss 0.01

    Atos Unify OpenScape Common Management Portal V10 before V10 R4.17.0 and V10 R5.1.0 allows an authenticated attacker to execute arbitrary code on the operating system by leveraging the Common Management Portal web interface for Authenticated remote upload and creation of…

  • CVE-2023-45354Oct 9, 2023
    risk 0.00cvss epss 0.01

    Atos Unify OpenScape Common Management Portal V10 before V10 R4.17.0 and V10 R5.1.0 allows an authenticated remote attacker to execute arbitrary code on the operating system by using the Common Management Portal web interface. This is also known as OCMP-6589.

  • CVE-2023-45352Oct 9, 2023
    risk 0.00cvss epss 0.01

    Atos Unify OpenScape Common Management Portal V10 before V10 R4.17.0 and V10 R5.1.0 allows an authenticated attacker to execute arbitrary code on the operating system via a Common Management Portal web interface Path traversal vulnerability allowing write access outside the…

  • CVE-2023-36618Oct 4, 2023
    risk 0.00cvss epss 0.03

    Atos Unify OpenScape Session Border Controller through V10 R3.01.03 allows execution of OS commands as root user by low-privileged authenticated users.

  • CVE-2023-36619Oct 4, 2023
    risk 0.00cvss epss 0.04

    Atos Unify OpenScape Session Border Controller through V10 R3.01.03 allows execution of administrative scripts by unauthenticated users.

  • CVE-2023-30638Apr 13, 2023
    risk 0.00cvss epss 0.01

    Atos Unify OpenScape SBC 10 before 10R3.1.3, OpenScape Branch 10 before 10R3.1.2, and OpenScape BCF 10 before 10R10.7.0 allow remote authenticated admins to inject commands.

  • CVE-2022-36444Jul 25, 2022
    risk 0.00cvss epss 0.01

    An issue was discovered in Atos Unify OpenScape SBC 9 and 10 before 10R2.2.1, Atos Unify OpenScape Branch 9 and 10 before version 10R2.1.1, and Atos Unify OpenScape BCF 10 before 10R9.12.1. A remote code execution vulnerability may allow an unauthenticated attacker (with network…

  • CVE-2019-19865Feb 21, 2020
    risk 0.00cvss epss 0.01

    Atos Unify OpenScape UC Application V9 before version V9 R4.31.0 and V10 before version V10 R0.6.0 allows XSS. An attacker could exploit this by convincing an authenticated user to inject arbitrary JavaScript code in the Profile Name field. A browser would execute this stored…

  • CVE-2019-19866Feb 21, 2020
    risk 0.00cvss epss 0.02

    Atos Unify OpenScape UC Web Client V9 before version V9 R4.31.0 and V10 before version V10 R0.6.0 allows remote attackers to obtain sensitive information. By iterating the value of conferenceId to getMailFunction in the JSON API, one can enumerate all conferences scheduled on…

  • CVE-2013-4781Jul 18, 2013
    risk 0.00cvss epss 0.03

    core/getLog.php on the Siemens Enterprise OpenScape Branch appliance and OpenScape Session Border Controller (SBC) before 2 R0.32.0, and 7 before 7 R1.7.0, allows remote attackers to execute arbitrary commands via unspecified vectors.

  • CVE-2013-4778Jul 18, 2013
    risk 0.00cvss epss 0.01

    core/getLog.php on the Siemens Enterprise OpenScape Branch appliance and OpenScape Session Border Controller (SBC) before 2 R0.32.0, and 7 before 7 R1.7.0, allows remote attackers to obtain sensitive server and statistics information via unspecified vectors.