CVE-2023-45353

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Oct 9, 2023

Updated: Oct 12, 2023

CWE ID 434

Summary

CVE-2023-45353 is a vulnerability affecting Atos Unify OpenScape Common Management Portal versions before V10 R4.17.0 and V10 R5.1.0. An authenticated attacker can exploit this issue by leveraging the web interface's authenticated remote upload feature to create and upload arbitrary files, ultimately leading to the execution of arbitrary code on the underlying operating system. This vulnerability, identified as OCMP-6591, poses a significant risk to system security.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Atos

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/s8Cy22
https://www.cve.org/CVERecord?id=CVE-2023-45353
https://nvd.nist.gov/vuln/detail/CVE-2023-45353

Back to Vulnerability Database

CVE-2023-45353

CVSS 3.1 Score 8.8 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations