Lucene search
Rapid7CVELIST:CVE-2023-28504HistoryMar 29, 2023 - 8:11 p.m.
CVE-2023-28504 Stack buffer overflow in UniRPC library function
2023-03-2920:11:20
CWE-120
rapid7
www.cve.org
cve-2023-28504
stack buffer overflow
unirpc library
rocket software unidata
rocket software universe
remote code execution
root user
Rocket Software UniData versions prior to 8.2.4 build 3003 and UniVerse versions prior to 11.3.5 build 1001 or 12.2.1 build 2002 suffer from a stack-based buffer overflow that can lead to remote code execution as the root user.
CNA Affected
[
{
"defaultStatus": "unaffected",
"platforms": [
"Linux"
],
"product": "UniData",
"vendor": "Rocket Software",
"versions": [
{
"lessThan": "8.2.43.3003",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"platforms": [
"Linux"
],
"product": "UniVerse",
"vendor": "Rocket Software",
"versions": [
{
"lessThan": "11.3.5.1001",
"status": "affected",
"version": "0",
"versionType": "semver"
},
{
"lessThan": "12.2.1.2002",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
}
]Related
prion
prion
Stack overflow
2023-03-29 21:15:00
cve
cve
CVE-2023-28504
2023-03-29 21:15:08
nvd
nvd
CVE-2023-28504
2023-03-29 21:15:08
rapid7blog
rapid7blog
Multiple Vulnerabilities in Rocket Software UniRPC server (Fixed)
2023-03-29 15:21:09