CVE-2023-29473
CVSS V2 None
CVSS V3 None
Description
webservice in Atos Unify OpenScape 4000 Platform and OpenScape 4000 Manager Platform 10 R1 before 10 R1.34.4 allows an unauthenticated attacker to run arbitrary commands on the platform operating system and achieve administrative access, aka OSFOURK-23710.
Overview
- CVE ID
- CVE-2023-29473
- Assigner
- cve@mitre.org
- Vulnerability Status
- Analyzed
- Published Version
- 2023-04-06T23:15:07
- Last Modified Date
- 2023-04-13T18:03:28
Weakness Enumerations
CPE Configuration (Product)
| CPE | Vulnerable | Operator | Version Start | Version End |
|---|---|---|---|---|
| cpe:2.3:a:atos:unify_openscape_4000:10:r1:*:*:*:*:*:* | 1 | OR | ||
| cpe:2.3:a:atos:unify_openscape_4000_manager:10:r1:*:*:*:*:*:* | 1 | OR |
References
| Reference URL | Reference Tags |
|---|---|
| https://networks.unify.com/security/advisories/OBSO-2303-01.pdf | Vendor Advisory |
| https://www.news.de/technik/856806612/unify-openscape-4000-gefaehrdet-it-sicherheitswarnung-vom-bsi-und-bug-report-betroffene-systeme-und-produkte-neue-versionen-und-updates/1/ | Third Party Advisory |
Sources
| Source Name | Source URL |
|---|---|
| NIST | https://nvd.nist.gov/vuln/detail/CVE-2023-29473 |
| MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29473 |
History
| Created | Old Value | New Value | Data Type | Notes |
|---|---|---|---|---|
| 2023-04-17 04:19:31 | Added to TrackCVE | |||
| 2023-04-17 04:19:34 | Weakness Enumeration | new |