CVE-2023-45351

CVSS 3.1 Score 8.8 of 10 (high)

Attack Complexity low
Confidentiality high
Integrity high
Availability high
Privileges Required low
Scope unchanged

Details

Published Oct 9, 2023
Updated: Oct 12, 2023
CWE ID 77

Summary

CVE-2023-45351 is a vulnerability affecting Atos Unify OpenScape 4000 Assistant V10 R1 before V10 R1.42.1, 4000 Assistant V10 R0, 4000 Manager V10 R1 before V10 R1.42.1, and 4000 Manager V10 R0. An authenticated command injection vulnerability exists in these versions, which allows attackers to inject malicious commands through the AShbr interface. Successful exploitation could result in significant unauthorized access to the system, potentially leading to data theft or system compromise. It is important for organizations using these affected versions to apply the necessary patches as soon as possible to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share