Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
atos unify openscape 4000 assistant 10 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-46404
A command injection vulnerability has been identified in Atos Unify OpenScape 4000 Assistant and Unify OpenScape 4000 Manager (8 before R2.22.18, 10 prior to 0.28.13, and 10 R1 before R1.34.4) that may allow an unauthenticated malicious user to upload arbitrary files and achieve ...
Atos Unify Openscape 4000 Assistant 8
Atos Unify Openscape 4000 Manager 8
Atos Unify Openscape 4000 Manager 10
Atos Unify Openscape 4000 Assistant 10
NA
CVE-2023-35033
Atos Unify OpenScape 4000 Assistant V10 R1 before V10 R1.42.0 and V10 R1.34.8, Assistant V10 R0, Manager V10 R1 before V10 R1.42.0 and V10 R1.34.8, and Manager V10 R0 allow command injection by authenticated users, aka OSFOURK-23556.
Atos Unify Openscape 4000 Manager 10
Atos Unify Openscape 4000 Assistant 10
NA
CVE-2023-35034
Atos Unify OpenScape 4000 Assistant V10 R1 before V10 R1.42.0 and V10 R1.34.8 and Manager V10 R1 before V10 R1.42.0 and V10 R1.34.8 allow remote code execution by unauthenticated users, aka OSFOURK-24033.
Atos Unify Openscape 4000 Manager 10
Atos Unify Openscape 4000 Assistant 10
NA
CVE-2023-45351
Atos Unify OpenScape 4000 Assistant V10 R1 before V10 R1.42.1, 4000 Assistant V10 R0, 4000 Manager V10 R1 before V10 R1.42.1, and 4000 Manager V10 R0 allow Authenticated Command Injection via AShbr. This is also known as OSFOURK-24039.
Atos Unify Openscape 4000 Manager 10
Atos Unify Openscape 4000 Assistant 10
NA
CVE-2023-45355
Atos Unify OpenScape 4000 Platform V10 R1 before Hotfix V10 R1.42.2 and 4000 and Manager Platform V10 R1 before Hotfix V10 R1.42.2 allow command injection by an authenticated attacker into the platform operating system, leading to administrative access via the webservice. This is...
Atos Unify Openscape 4000 Manager 10
Atos Unify Openscape 4000 Assistant 10
NA
CVE-2023-45356
Atos Unify OpenScape 4000 Platform V10 R1 before Hotfix V10 R1.42.2 4000 and Manager Platform V10 R1 before Hotfix V10 R1.42.2 allow command injection by an authenticated attacker into the platform operating system, leading to administrative access, via dtb pages of the platform ...
Atos Unify Openscape 4000 Manager 10
Atos Unify Openscape 4000 Assistant 10
NA
CVE-2023-35032
Atos Unify OpenScape 4000 Assistant V10 R1 before V10 R1.42.0 and V10 R1.34.8 and Manager V10 R1 before V10 R1.42.0 and V10 R1.34.8 allow command injection by authenticated users, aka OSFOURK-23554.
Atos Unify Openscape 4000 Manager 10
Atos Unify Openscape 4000 Assistant 10
NA
CVE-2023-45349
Atos Unify OpenScape 4000 Assistant V10 R1 before V10 R1.34.7, 4000 Assistant V10 R1.42.0, 4000 Assistant V10 R0, 4000 Manager V10 R1 before V10 R1.34.7, 4000 Manager V10 R1.42.0, and 4000 Manager V10 R0 expose sensitive information that may allow lateral movement to the backup s...
Atos Unify Openscape 4000 Manager 10
Atos Unify Openscape 4000 Assistant 10
NA
CVE-2023-35031
Atos Unify OpenScape 4000 Assistant V10 R1 before V10 R1.42.0 and V10 R1.34.8, Assistant V10 R0, Manager V10 R1 before V10 R1.42.0 and V10 R1.34.8, and Manager V10 R0 allow command injection by authenticated users, aka OSFOURK-24036.
Atos Unify Openscape 4000 Manager 10
Atos Unify Openscape 4000 Assistant 10
NA
CVE-2023-35035
Atos Unify OpenScape 4000 Assistant V10 R1 before V10 R1.42.0 and V10 R1.34.8, Assistant V10 R0, Manager V10 R1 before V10 R1.42.0 and V10 R1.34.8, and Manager V10 R0 allow command injection by authenticated users, aka OSFOURK-23557.
Atos Unify Openscape 4000 Manager 10
Atos Unify Openscape 4000 Assistant 10
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
cross-site request forgery
unauthorized
CVE-2024-33925
reflected XSS
CVE-2023-51580
CVE-2023-51579
CVE-2015-2051
CVE-2023-51609
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started