← Back

Atos

atos

25 CVEs • 39 products

Products (39)

Click to collapse
Toggle
Unify Openscape 4000 Manager
unify_openscape_4000_manager
14 CVEs
Unify Openscape 4000 Assistant
unify_openscape_4000_assistant
10 CVEs
Unify Openscape Bcf
unify_openscape_bcf
3 CVEs
Unify Openscape Branch
unify_openscape_branch
3 CVEs
Unify Openscape Session Border Controller
unify_openscape_session_border_controller
3 CVEs
Unify Openscape 4000
unify_openscape_4000
3 CVEs
Unify Openscape Common Management
unify_openscape_common_management
3 CVEs
Openstage 80 Firmware
openstage_80_firmware
2 CVEs
Openstage 80 G Firmware
openstage_80_g_firmware
2 CVEs
Openstage 60 G Firmware
openstage_60_g_firmware
2 CVEs
Openstage 60 Firmware
openstage_60_firmware
2 CVEs
Openstage 40 Firmware
openstage_40_firmware
2 CVEs
Openstage 40 G Firmware
openstage_40_g_firmware
2 CVEs
Openstage 20 E Firmware
openstage_20_e_firmware
2 CVEs
Openstage 20 Firmware
openstage_20_firmware
2 CVEs
Openstage 20 G Firmware
openstage_20_g_firmware
2 CVEs
Openstage 15 Firmware
openstage_15_firmware
2 CVEs
Openstage 15 G Firmware
openstage_15_g_firmware
2 CVEs
Openscape Desk Phone Ip 35g Firmware
openscape_desk_phone_ip_35g_firmware
2 CVEs
Openscape Desk Phone Ip 35g Eco Firmware
openscape_desk_phone_ip_35g_eco_firmware
2 CVEs
Openscape Desk Phone Ip 55g Firmware
openscape_desk_phone_ip_55g_firmware
2 CVEs
Unify Openscape Uc Web Client
unify_openscape_uc_web_client
2 CVEs
Openstage 5 Firmware
openstage_5_firmware
1 CVE
Eviden Cardos Api
eviden_cardos_api
1 CVE
Openscape Desk Phone Ip 35g
openscape_desk_phone_ip_35g
0 CVEs
Openscape Desk Phone Ip 35g Eco
openscape_desk_phone_ip_35g_eco
0 CVEs
Openscape Desk Phone Ip 55g
openscape_desk_phone_ip_55g
0 CVEs
Openstage 80
openstage_80
0 CVEs
Openstage 80 G
openstage_80_g
0 CVEs
Openstage 60 G
openstage_60_g
0 CVEs
Openstage 60
openstage_60
0 CVEs
Openstage 40
openstage_40
0 CVEs
Openstage 40 G
openstage_40_g
0 CVEs
Openstage 20 E
openstage_20_e
0 CVEs
Openstage 20
openstage_20
0 CVEs
Openstage 20 G
openstage_20_g
0 CVEs
Openstage 15
openstage_15
0 CVEs
Openstage 15 G
openstage_15_g
0 CVEs
Openstage 5
openstage_5
0 CVEs

CVEs (25)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2022-36444
1Atos
3Unify Openscape Bcf
Unify Openscape BranchUnify Openscape Session Border Controller
Nov 21, 2024
Jul 25, 2022
N/A· v4
9.8 CRITICAL· v3
N/A· v2
An issue was discovered in Atos Unify OpenScape SBC 9 and 10 before 10R2.2.1, Atos Unify OpenScape Branch 9 and 10 before version 10R2.1.1, and Atos Unify OpenScape BCF 10 before 10R9.12.1. A remote code execution vulner...Show more
An issue was discovered in Atos Unify OpenScape SBC 9 and 10 before 10R2.2.1, Atos Unify OpenScape Branch 9 and 10 before version 10R2.1.1, and Atos Unify OpenScape BCF 10 before 10R9.12.1. A remote code execution vulnerability may allow an unauthenticated attacker (with network access to the admin interface) to disrupt system availability or potentially compromise the confidentiality and integrity of the system.Show less
CVE-2019-19866
1Atos
1Unify Openscape Uc Web Client
Nov 21, 2024
Feb 21, 2020
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
Atos Unify OpenScape UC Web Client V9 before version V9 R4.31.0 and V10 before version V10 R0.6.0 allows remote attackers to obtain sensitive information. By iterating the value of conferenceId to getMailFunction in the...Show more
Atos Unify OpenScape UC Web Client V9 before version V9 R4.31.0 and V10 before version V10 R0.6.0 allows remote attackers to obtain sensitive information. By iterating the value of conferenceId to getMailFunction in the JSON API, one can enumerate all conferences scheduled on the platform, with their numbers and access PINs.Show less
CVE-2019-19865
1Atos
1Unify Openscape Uc Web Client
Nov 21, 2024
Feb 21, 2020
N/A· v4
6.1 MEDIUM· v3
4.3 MEDIUM· v2
Atos Unify OpenScape UC Application V9 before version V9 R4.31.0 and V10 before version V10 R0.6.0 allows XSS. An attacker could exploit this by convincing an authenticated user to inject arbitrary JavaScript code in the...Show more
Atos Unify OpenScape UC Application V9 before version V9 R4.31.0 and V10 before version V10 R0.6.0 allows XSS. An attacker could exploit this by convincing an authenticated user to inject arbitrary JavaScript code in the Profile Name field. A browser would execute this stored XSS payload.Show less
CVE-2014-2651
1Atos
14Openscape Desk Phone Ip 35g Eco Firmware
Openscape Desk Phone Ip 35g FirmwareOpenscape Desk Phone Ip 55g Firmware+11 more
Nov 21, 2024
Jan 9, 2020
N/A· v4
9.8 CRITICAL· v3
10.0 HIGH· v2
Unify OpenStage/OpenScape Desk Phone IP SIP before V3 R3.11.0 has an authentication bypass in the default mode of the Workpoint Interface
CVE-2014-2650
1Atos
15Openscape Desk Phone Ip 35g Eco Firmware
Openscape Desk Phone Ip 35g FirmwareOpenscape Desk Phone Ip 55g Firmware+12 more
Nov 21, 2024
Jan 9, 2020
N/A· v4
9.8 CRITICAL· v3
10.0 HIGH· v2
Unify OpenStage / OpenScape Desk Phone IP before V3 R3.11.0 SIP has an OS command injection vulnerability in the web based management interface