Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
rocketsoftware vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2014-3914
Directory traversal vulnerability in the Admin Center for Tivoli Storage Manager (TSM) in Rocket ServerGraph 1.2 allows remote malicious users to (1) create arbitrary files via a .. (dot dot) in the query parameter in a writeDataFile action to the fileRequestor servlet, execute a...
Rocketsoftware Rocket Servergraph 1.2
1 EDB exploit
10
CVSSv2
CVE-2014-3915
The userRequest servlet in the Admin Center for Tivoli Storage Manager in Rocket Servergraph allows remote malicious users to execute arbitrary commands via a (1) auth, (2) auth_session, (3) auth_simple, (4) add, (5) add_flat, (6) remove, (7) set_pwd, (8) add_permissions, (9) rev...
Rocketsoftware Rocket Servergraph -
7.5
CVSSv2
CVE-2021-45024
ASG technologies ( A Rocket Software Company) ASG-Zena Cross Platform Server Enterprise Edition 4.2.1 is vulnerable to XML External Entity (XXE).
Rocketsoftware Ags-zena 4.2.1
2 Github repositories
5
CVSSv2
CVE-2021-45025
ASG technologies ( A Rocket Software Company) ASG-Zena Cross Platform Server Enterprise Edition 4.2.1 is vulnerable to Cleartext Storage of Sensitive Information in a Cookie.
Rocketsoftware Ags-zena 4.2.1
3 Github repositories
4.3
CVSSv2
CVE-2021-45026
ASG technologies ASG-Zena Cross Platform Server Enterprise Edition 4.2.1 is vulnerable to Cross Site Scripting (XSS).
Rocketsoftware Ags-zena 4.2.1
3 Github repositories
NA
CVE-2023-28502
Rocket Software UniData versions before 8.2.4 build 3003 and UniVerse versions before 11.3.5 build 1001 or 12.2.1 build 2002 suffer from a stack-based buffer overflow in the "udadmin" service that can lead to remote code execution as the root user.
Rocketsoftware Unidata
Rocketsoftware Universe
1 Github repository
NA
CVE-2023-28503
Rocket Software UniData versions before 8.2.4 build 3003 and UniVerse versions before 11.3.5 build 1001 or 12.2.1 build 2002 suffer from an authentication bypass vulnerability, where a special username with a deterministic password can be leveraged to bypass authentication checks...
Rocketsoftware Unidata
Rocketsoftware Universe
1 Github repository
NA
CVE-2023-28504
Rocket Software UniData versions before 8.2.4 build 3003 and UniVerse versions before 11.3.5 build 1001 or 12.2.1 build 2002 suffer from a stack-based buffer overflow that can lead to remote code execution as the root user.
Rocketsoftware Unidata
Rocketsoftware Universe
NA
CVE-2023-28505
Rocket Software UniData versions before 8.2.4 build 3003 and UniVerse versions before 11.3.5 build 1001 or 12.2.1 build 2002 suffer from a buffer overflow in an API function, where a string is copied into a caller-provided buffer without checking the length. This requires a valid...
Rocketsoftware Unidata
Rocketsoftware Universe
NA
CVE-2023-28506
Rocket Software UniData versions before 8.2.4 build 3003 and UniVerse versions before 11.3.5 build 1001 or 12.2.1 build 2002 suffer from a stack-based buffer overflow, where a string is copied into a buffer using a memcpy-like function and a user-provided length. This requires a ...
Rocketsoftware Unidata
Rocketsoftware Universe
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-38298
CVE-2024-20356
CVE-2023-21987
CVE-2024-33217
bypass
CVE-2024-31804
CVE-2024-32660
unauthorized
SSRF
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »