GCVE - cpe:2.3:a:atos:unify_openscape_branch:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:atos:unify_openscape_branch:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Atos (`00abc08f-a421-524a-bc02-1243de3b476f`)
Product	Unify Openscape Branch (`d4d9a6b0-f704-57b9-8164-a80b804a5607`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2023-6269`	vulnerable	2026-06-03 14:53:51.347103	Argument injection vulnerability in Atos Unify OpenScape Session Border Controller, Atos Unify OpenScape Branch and Atos Unify OpenScape BCF CRITICAL (10) An argument injection vulnerability has been identified in the administrative web interface of the Atos Unify OpenScape products "Session Border Controller" (SBC) and "Branch", before version V10 R3.4.0, and OpenScape "BCF" before versions V10R10.12.00 and V10R11.05.02. This allows an unauthenticated attacker to gain root access to the appliance via SSH (scope change) and also bypass authentication for the administrative interface and gain access as an arbitrary (administrative) user. Published: 2023-12-05T07:35:19.472Z Updated: 2025-02-13T17:26:16.336Z Open on db.gcve.eu Reference links https://networks.unify.com/security/advisories/OBSO-2310-01.pdf https://r.sec-consult.com/unifyroot http://seclists.org/fulldisclosure/2023/Dec/16 http://packetstormsecurity.com/files/176194/Atos-Unify-OpenScape-Authentication-Bypass-Remote-Code-Execution.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2023-30638`	vulnerable	2026-06-03 14:51:52.917004	Details available HIGH (7.2) Atos Unify OpenScape SBC 10 before 10R3.1.3, OpenScape Branch 10 before 10R3.1.2, and OpenScape BCF 10 before 10R10.7.0 allow remote authenticated admins to inject commands. Published: 2023-04-13T00:00:00.000Z Updated: 2025-02-07T16:11:41.795Z Open on db.gcve.eu Reference links https://networks.unify.com/security/advisories/OBSO-2303-02.pdf https://www.news.de/technik/856818957/unify-openscape-sbc-und-openscape-branch-gefaehrdet-it-sicherheitswarnung-vom-bsi-und-bug-report-bekannte-schwachstellen-und-sicherheitsluecken/1/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-36444`	vulnerable	2026-06-03 14:47:40.437517	Details available HIGH (8.6) An issue was discovered in Atos Unify OpenScape SBC 9 and 10 before 10R2.2.1, Atos Unify OpenScape Branch 9 and 10 before version 10R2.1.1, and Atos Unify OpenScape BCF 10 before 10R9.12.1. A remote code execution vulnerability may allow an unauthenticated attacker (with network access to the admin interface) to disrupt system availability or potentially compromise the confidentiality and integrity of the system. Published: 2022-07-25T05:38:54.000Z Updated: 2024-08-03T10:07:34.079Z Open on db.gcve.eu Reference links https://networks.unify.com/security/advisories/OBSO-2203-01.pdf	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.