CRITICAL🇬🇧 English

CVE-2022-46404

CVSS 9.8v3.1pub. 2022-12-13upd. 2025-04-22

A command injection vulnerability has been identified in Atos Unify OpenScape 4000 Assistant and Unify OpenScape 4000 Manager (8 before R2.22.18, 10 before 0.28.13, and 10 R1 before R1.34.4) that may allow an unauthenticated attacker to upload arbitrary files and achieve administrative access to the system.

oryginał EN
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Atos Unify Openscape 4000 Assistant

    APP
    Atos
    108
  • Atos Unify Openscape 4000 Manager

    APP
    Atos
    108
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
Auth Bypass
CWE
Referencje

Powiązane podatności

CVE-2023-35034CRITICAL9.8ten sam produkt

Atos Unify OpenScape 4000 Assistant V10 R1 before V10 R1.42.0 and V10 R1.34.8 and Manager V10 R1 before V10 R1...

CVE-2023-29475CRITICAL9.8ten sam produkt

inventory in Atos Unify OpenScape 4000 Platform and OpenScape 4000 Manager Platform 10 R1 before 10 R1.34.4 al...

CVE-2023-29474CRITICAL9.8ten sam produkt

inventory in Atos Unify OpenScape 4000 Platform and OpenScape 4000 Manager Platform 10 R1 before 10 R1.34.4 al...

CVE-2023-29473CRITICAL9.8ten sam produkt

webservice in Atos Unify OpenScape 4000 Platform and OpenScape 4000 Manager Platform 10 R1 before 10 R1.34.4 a...

CVE-2023-45349HIGH7.5ten sam produkt

Atos Unify OpenScape 4000 Assistant V10 R1 before V10 R1.34.7, 4000 Assistant V10 R1.42.0, 4000 Assistant V10 ...

CVE-2022-46404 — CRITICAL 9.8 | CVEbaza.pl