CVE-2023-30638 in Unify OpenScape SBCinfo

Summary

by MITRE • 04/14/2023

Atos Unify OpenScape SBC 10 before 10R3.1.3, OpenScape Branch 10 before 10R3.1.2, and OpenScape BCF 10 before 10R10.7.0 allow remote authenticated admins to inject commands.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Analysis

by VulDB Data Team • 12/24/2025

The vulnerability identified as CVE-2023-30638 affects multiple products within the Atos Unify OpenScape family including the OpenScape SBC 10, OpenScape Branch 10, and OpenScape BCF 10 series. These systems are designed for enterprise communication infrastructure and security management, making them critical components in corporate network environments. The flaw manifests as a command injection vulnerability that specifically targets authenticated administrative users who can remotely access the system. This vulnerability represents a significant risk to organizations relying on these platforms for their telephony and communication services, as it allows attackers with administrative credentials to execute arbitrary commands on the affected systems.

The technical nature of this vulnerability stems from inadequate input validation and sanitization within the administrative interfaces of these communication platforms. When authenticated administrators perform operations through the web-based management interfaces, the system fails to properly validate or sanitize user-supplied input before processing it. This allows attackers to inject malicious commands that bypass normal security controls and execute with the privileges of the administrative account. The vulnerability operates at the application layer and specifically affects the command execution mechanisms used by the administrative interfaces, making it particularly dangerous as it can be exploited by users who already possess legitimate administrative access.

The operational impact of this vulnerability extends beyond simple privilege escalation, as it enables attackers to potentially gain complete control over the affected communication systems. An attacker with administrative credentials could leverage this vulnerability to execute arbitrary code, modify system configurations, access sensitive communication data, or even use the compromised system as a pivot point to attack other network resources. The remote nature of the exploitation means that attackers do not require physical access to the systems, making the vulnerability particularly concerning for organizations with distributed network infrastructures. This vulnerability directly relates to CWE-77 which describes command injection flaws, and could be categorized under ATT&CK technique T1059 for command and scripting interpreter, specifically focusing on the execution of malicious commands through compromised administrative interfaces.

Organizations affected by this vulnerability should immediately implement mitigations including applying the vendor-provided patches and updates for the affected versions of the OpenScape products. The patches typically address the input validation issues by implementing proper sanitization of user inputs and strengthening the command execution mechanisms within the administrative interfaces. Additionally, network segmentation and access controls should be reviewed to limit the number of users with administrative privileges, implementing the principle of least privilege. Regular security monitoring and log analysis should be enhanced to detect unusual command execution patterns that might indicate exploitation attempts. Organizations should also consider implementing network-based intrusion detection systems to monitor for suspicious traffic patterns that could indicate exploitation of this vulnerability, particularly focusing on web interface access and command execution activities.

Responsible

MITRE

Reservation

04/13/2023

Disclosure

04/14/2023

Moderation

accepted

CPE

ready

EPSS

0.00956

KEV

no

Activities

very low

Sources

Do you need the next level of professionalism?

Upgrade your account now!