CVE-2023-45353
Last modified
CVE-2023-45353 is a high-severity vulnerability rated 8.8/10 on the CVSS scale. Atos Unify OpenScape Common Management Portal V10 before V10 R4.17.0 and V10 R5.1.0 allows an authenticated attacker to execute arbitrary code on the operating system by leveraging the Common Management Portal web interface for Authenticated remote upload and creation of arbitrary files affecting the underlying operating system. This is also known as OCMP-6591.. EPSS estimates a 0.71% chance of exploitation in the next 30 days.
Description
Atos Unify OpenScape Common Management Portal V10 before V10 R4.17.0 and V10 R5.1.0 allows an authenticated attacker to execute arbitrary code on the operating system by leveraging the Common Management Portal web interface for Authenticated remote upload and creation of arbitrary files affecting the underlying operating system. This is also known as OCMP-6591.
Metrics
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Atos | Unify Openscape Common Management | 10 |
References
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2023-45353?
How severe is CVE-2023-45353?
How do I fix CVE-2023-45353?
Are you affected by CVE-2023-45353?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST