Lucene search
Rapid7CVELIST:CVE-2023-28502HistoryMar 29, 2023 - 8:03 p.m.
CVE-2023-28502 Stack buffer overflow in UniRPC's udadmin_server service
2023-03-2920:03:33
CWE-120
rapid7
www.cve.org
cve-2023-28502
stack buffer overflow
unirpc
udadmin_server
rocket software
unidata
universe
remote code execution
root user
Rocket Software UniData versions prior to 8.2.4 build 3003 and UniVerse versions prior to 11.3.5 build 1001 or 12.2.1 build 2002 suffer from a stack-based buffer overflow in the “udadmin” service that can lead to remote code execution as the root user.
CNA Affected
[
{
"defaultStatus": "unaffected",
"platforms": [
"Linux"
],
"product": "UniData",
"vendor": "Rocket Software",
"versions": [
{
"lessThan": "8.2.43.3003",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"platforms": [
"Linux"
],
"product": "UniVerse",
"vendor": "Rocket Software",
"versions": [
{
"lessThan": "11.3.5.1001",
"status": "affected",
"version": "0",
"versionType": "semver"
},
{
"lessThan": "12.2.1.2002",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
}
]Related
cve
cve
CVE-2023-28502
2023-03-29 21:15:08
prion
prion
Stack overflow
2023-03-29 21:15:00
nvd
nvd
CVE-2023-28502
2023-03-29 21:15:08
packetstorm
packetstorm
Rocket Software Unidata 8.2.4 Build 3003 Buffer Overflow
2023-04-12 00:00:00
rapid7blog
rapid7blog
Metasploit Weekly Wrap-Up
2023-04-14 18:13:48
Multiple Vulnerabilities in Rocket Software UniRPC server (Fixed)
2023-03-29 15:21:09