CVE-2023-40263

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Feb 8, 2024

Updated: Feb 15, 2024

CWE ID 77

Summary

CVE-2023-40263 is a vulnerability affecting Atos Unify OpenScape Voice Trace Manager versions prior to V8 R0.9.11. This issue grants authenticated attackers the ability to inject commands via FTP, posing a significant security risk. Successful exploitation could lead to unauthorized system modifications or data exfiltration. Authentic users with FTP access can potentially execute arbitrary commands, compromising the system's integrity and confidentiality. Organizations using this software are advised to apply the available patch as soon as possible to mitigate this vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/sTMIJE
https://www.cve.org/CVERecord?id=CVE-2023-40263
https://nvd.nist.gov/vuln/detail/CVE-2023-40263

Back to Vulnerability Database

CVE-2023-40263

CVSS 3.1 Score 8.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations