CVE-2023-45353 in OpenScape Common Management Portal V10
Summary
by MITRE • 10/25/2023
Atos Unify OpenScape Common Management Portal V10 before V10 R4.17.0 and V10 R5.1.0 allows an authenticated attacker to execute arbitrary code on the operating system by leveraging the Common Management Portal web interface for Authenticated remote upload and creation of arbitrary files affecting the underlying operating system. This is also known as OCMP-6591.
Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.
Analysis
by VulDB Data Team • 02/09/2026
The vulnerability CVE-2023-45353 affects the Atos Unify OpenScape Common Management Portal version 10 before releases V10 R4.17.0 and V10 R5.1.0, representing a critical security flaw that enables authenticated attackers to achieve remote code execution on the underlying operating system. This vulnerability exists within the web interface of the Common Management Portal, specifically exploiting the authentication mechanism to allow unauthorized file operations that can compromise system integrity. The flaw is categorized under CWE-434 Unrestricted Upload of File with Dangerous Type, which directly relates to the ability of an authenticated user to upload arbitrary files to the system. The vulnerability is also tracked as OCMP-6591 within the Atos security tracking system, indicating its recognition and classification within the vendor's vulnerability management framework.
The technical implementation of this vulnerability involves the exploitation of file upload functionality within the Common Management Portal interface, where authenticated users can leverage legitimate access privileges to upload malicious files to the system. This flaw allows attackers to bypass normal file validation mechanisms and execute arbitrary code with the privileges of the web application, potentially leading to complete system compromise. The vulnerability's impact extends beyond simple code execution as it provides attackers with the ability to create arbitrary files on the operating system, which can be used to establish persistence, escalate privileges, or deploy additional malicious payloads. The authentication requirement means that attackers must first obtain valid credentials, but once authenticated, they can leverage this vulnerability to gain unauthorized system access and execute commands directly on the target machine.
From an operational standpoint, this vulnerability poses significant risk to organizations utilizing the Atos Unify OpenScape Common Management Portal, as it represents a path to complete system compromise through authenticated access. The attack surface is particularly concerning because it allows attackers to execute code with system-level privileges, potentially enabling lateral movement within networks, data exfiltration, or the establishment of backdoors. The vulnerability's classification under the ATT&CK framework would likely map to techniques such as T1059 Command and Scripting Interpreter and T1078 Valid Accounts, as attackers would need to use legitimate credentials to exploit the vulnerability and then execute commands on the system. Organizations using this portal may face regulatory compliance issues if this vulnerability is exploited, particularly in environments governed by standards such as SOC 2, ISO 27001, or PCI DSS, where system integrity and access control are critical requirements.
The recommended mitigations for this vulnerability include immediate patching to versions V10 R4.17.0 or V10 R5.1.0, which contain the necessary security fixes to prevent unauthorized file uploads and code execution. Network segmentation should be implemented to limit access to the Common Management Portal to authorized personnel only, reducing the attack surface. Additionally, implementing robust file upload validation mechanisms, monitoring for unusual file upload activities, and conducting regular security assessments of the portal's web interface are essential defensive measures. Organizations should also consider implementing network detection and response capabilities to identify potential exploitation attempts, as the vulnerability's impact can be severe enough to warrant continuous monitoring for signs of compromise. The vulnerability demonstrates the critical importance of maintaining up-to-date security patches and implementing defense-in-depth strategies to protect against authenticated privilege escalation attacks that can lead to complete system compromise.