CVE-2023-45350
First published: Mon Oct 09 2023(Updated: )
Atos Unify OpenScape 4000 Manager V10 R1 before V10 R1.42.1 and 4000 Manager V10 R0 allow Privilege escalation that may lead to the ability of an authenticated attacker to run arbitrary code via AScm. This is also known as OSFOURK-24034.
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Atos Unify OpenScape 4000 Manager | =10-r0 | |
| Atos Unify OpenScape 4000 Manager | =10-r1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2023-45350?
CVE-2023-45350 is a vulnerability in Atos Unify OpenScape 4000 Manager V10 R1 before V10 R1.42.1 and 4000 Manager V10 R0 that allows privilege escalation, leading to the ability of an authenticated attacker to run arbitrary code via AScm.
How severe is CVE-2023-45350?
CVE-2023-45350 has a severity rating of 8.8 (high).
What software versions are affected by CVE-2023-45350?
Atos Unify OpenScape 4000 Manager V10 R1 before V10 R1.42.1 and 4000 Manager V10 R0 are affected by CVE-2023-45350.
How can an attacker exploit CVE-2023-45350?
An authenticated attacker can exploit CVE-2023-45350 by escalating privileges and running arbitrary code via AScm.
Is there a fix for CVE-2023-45350?
Yes, the fix for CVE-2023-45350 is to update Atos Unify OpenScape 4000 Manager to version V10 R1.42.1 or higher.
- collector/nvd-api
- collector/nvd-index
- agent/references
- agent/severity
- agent/author
- agent/event
- agent/type
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/atos
- canonical/atos unify openscape 4000 manager
- version/atos unify openscape 4000 manager/10-r0
- version/atos unify openscape 4000 manager/10-r1