Lucene search
Rapid7CVELIST:CVE-2023-28501HistoryMar 29, 2023 - 7:54 p.m.
CVE-2023-28501 Heap buffer overflow in unirpcd
2023-03-2919:54:45
CWE-190
rapid7
www.cve.org
2
cve-2023-28501
security vulnerability
remote code execution
heap buffer overflow
unidata
universe
rocket software
Rocket Software UniData versions prior to 8.2.4 build 3003 and UniVerse versions prior to 11.3.5 build 1001 or 12.2.1 build 2002 suffer from a heap-based buffer overflow in the unirpcd daemon that, if successfully exploited, can lead to remote code execution as the root user.
CNA Affected
[
{
"defaultStatus": "unaffected",
"platforms": [
"Linux"
],
"product": "UniData",
"vendor": "Rocket Software",
"versions": [
{
"lessThan": "8.2.4.3003",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"platforms": [
"Linux"
],
"product": "UniVerse",
"vendor": "Rocket Software",
"versions": [
{
"lessThan": "11.3.5.1001",
"status": "affected",
"version": "0",
"versionType": "semver"
},
{
"lessThan": "12.2.1.2002",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
}
]Related
nvd
nvd
CVE-2023-28501
2023-03-29 20:15:07
prion
prion
Heap overflow
2023-03-29 20:15:00
cve
cve
CVE-2023-28501
2023-03-29 20:15:07
rapid7blog
rapid7blog
Multiple Vulnerabilities in Rocket Software UniRPC server (Fixed)
2023-03-29 15:21:09