← back
CVE-2022-46404

CVE-2022-46404

CVSS 9.8 CRITICALEPSS 1.8%CWE-77
Vexday Risk Score
28Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 9.8EPSS 1.8%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
13 Dec 2022Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
A command injection vulnerability has been identified in Atos Unify OpenScape 4000 Assistant and Unify OpenScape 4000 Manager (8 before R2.22.18, 10 before 0.28.13, and 10 R1 before R1.34.4) that may allow an unauthenticated attacker to upload arbitrary files and achieve administrative access to the system.
CVSS:3.1/AC:L/AV:N/A:H/C:H/I:H/PR:N/S:U/UI:N
Affected products
n/a · n/a