Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
NA

CVE-2023-28502

Published: 29/03/2023 Updated: 12/04/2023
CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9
VMScore: 0
Subscribe to Rocketsoftware

Vulnerability Summary

Rocket Software UniData versions before 8.2.4 build 3003 and UniVerse versions before 11.3.5 build 1001 or 12.2.1 build 2002 suffer from a stack-based buffer overflow in the "udadmin" service that can lead to remote code execution as the root user.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

rocketsoftware unidata

rocketsoftware universe

Github Repositories

https://github.com/Network-Sec/bin-tools-pub

My bin folder, tools I created as FOSS

My "bin folder" tools Tools I created as FOSS htmlqpy To see examples how I use htmlq and jsonq - see the script: cve_scrapesh $ htmlqpy -h usage: htmlqpy [-h] [-j] -l LOOP -s SELECTORS [-t] [-o] [-u URLROOT] HTML Data Extraction options: -h, --help show this help message and exit -j, --json Output as JSON -l LOOP, --loop LOOP Loop

References

CWE-787https://www.rapid7.com/blog/post/2023/03/29/multiple-vulnerabilities-in-rocket-software-unirpc-server-fixed/http://packetstormsecurity.com/files/171853/Rocket-Software-Unidata-8.2.4-Build-3003-Buffer-Overflow.htmlhttps://nvd.nist.govhttps://github.com/Network-Sec/bin-tools-pub
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7028memory leaklog injectionCVE-2024-3400CVE-2022-48695CVE-2022-48675CVE-2024-34487CVE-2024-33792spoof
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook