Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
rocketsoftware unidata vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2023-28502
Rocket Software UniData versions before 8.2.4 build 3003 and UniVerse versions before 11.3.5 build 1001 or 12.2.1 build 2002 suffer from a stack-based buffer overflow in the "udadmin" service that can lead to remote code execution as the root user.
Rocketsoftware Unidata
Rocketsoftware Universe
1 Github repository
9.8
CVSSv3
CVE-2023-28503
Rocket Software UniData versions before 8.2.4 build 3003 and UniVerse versions before 11.3.5 build 1001 or 12.2.1 build 2002 suffer from an authentication bypass vulnerability, where a special username with a deterministic password can be leveraged to bypass authentication checks...
Rocketsoftware Unidata
Rocketsoftware Universe
1 Github repository
9.8
CVSSv3
CVE-2023-28504
Rocket Software UniData versions before 8.2.4 build 3003 and UniVerse versions before 11.3.5 build 1001 or 12.2.1 build 2002 suffer from a stack-based buffer overflow that can lead to remote code execution as the root user.
Rocketsoftware Unidata
Rocketsoftware Universe
9.8
CVSSv3
CVE-2023-28507
Rocket Software UniData versions before 8.2.4 build 3003 and UniVerse versions before 11.3.5 build 1001 or 12.2.1 build 2002 suffer from a memory-exhaustion issue, where a decompression routine will allocate increasing amounts of memory until all system memory is exhausted and th...
Rocketsoftware Unidata
Rocketsoftware Universe
9.8
CVSSv3
CVE-2023-28501
Rocket Software UniData versions before 8.2.4 build 3003 and UniVerse versions before 11.3.5 build 1001 or 12.2.1 build 2002 suffer from a heap-based buffer overflow in the unirpcd daemon that, if successfully exploited, can lead to remote code execution as the root user.
Rocketsoftware Unidata
Rocketsoftware Universe
8.8
CVSSv3
CVE-2023-28505
Rocket Software UniData versions before 8.2.4 build 3003 and UniVerse versions before 11.3.5 build 1001 or 12.2.1 build 2002 suffer from a buffer overflow in an API function, where a string is copied into a caller-provided buffer without checking the length. This requires a valid...
Rocketsoftware Unidata
Rocketsoftware Universe
8.8
CVSSv3
CVE-2023-28506
Rocket Software UniData versions before 8.2.4 build 3003 and UniVerse versions before 11.3.5 build 1001 or 12.2.1 build 2002 suffer from a stack-based buffer overflow, where a string is copied into a buffer using a memcpy-like function and a user-provided length. This requires a ...
Rocketsoftware Unidata
Rocketsoftware Universe
8.8
CVSSv3
CVE-2023-28508
Rocket Software UniData versions before 8.2.4 build 3003 and UniVerse versions before 11.3.5 build 1001 or 12.2.1 build 2002 suffer from a heap-based overflow vulnerability, where certain input can corrupt the heap and crash the forked process.
Rocketsoftware Unidata
Rocketsoftware Universe
7.5
CVSSv3
CVE-2023-28509
Rocket Software UniData versions before 8.2.4 build 3003 and UniVerse versions before 11.3.5 build 1001 or 12.2.1 build 2002 use weak encryption for packet-level security and passwords transferred on the wire.
Rocketsoftware Unidata
Rocketsoftware Universe
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started