CVE-2023-6269

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Dec 5, 2023

Updated: Dec 13, 2023

CWE ID 88

Summary

CVE-2023-6269 is a newly identified vulnerability affecting the administrative web interface of Atos Unify OpenScape products, specifically the Session Border Controller (SBC) and Branch, as well as the BCF, before certain versions. This issue involves an argument injection flaw that enables unauthenticated attackers to gain root access via SSH by performing a scope change. Additionally, attackers can bypass authentication and obtain administrative access as an arbitrary user for the administrative interface.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Atos

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/th-pkN
https://www.cve.org/CVERecord?id=CVE-2023-6269
https://nvd.nist.gov/vuln/detail/CVE-2023-6269

Back to Vulnerability Database

CVE-2023-6269

CVSS 3.1 Score 9.8 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations