Lucene search
Rapid7CVELIST:CVE-2023-28509HistoryMar 29, 2023 - 8:18 p.m.
CVE-2023-28509 Weak encryption in UniRPC protocol
2023-03-2920:18:02
CWE-327
rapid7
www.cve.org
3
cve-2023-28509
unidata
universe
packet-level security
passwords transferred
weak encryption
rocket software
EPSS
0.001
Percentile
40.0%
Rocket Software UniData versions prior to 8.2.4 build 3003 and UniVerse versions prior to 11.3.5 build 1001 or 12.2.1 build 2002 use weak encryption for packet-level security and passwords transferred on the wire.
CNA Affected
[
{
"defaultStatus": "unaffected",
"platforms": [
"Linux"
],
"product": "UniData",
"vendor": "Rocket Software",
"versions": [
{
"lessThan": "8.2.43.3003",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"platforms": [
"Linux"
],
"product": "UniVerse",
"vendor": "Rocket Software",
"versions": [
{
"lessThan": "11.3.5.1001",
"status": "affected",
"version": "0",
"versionType": "semver"
},
{
"lessThan": "12.2.1.2002",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
}
]Related
prion
prion
Design/Logic Flaw
2023-03-29 21:15:00
nvd
nvd
CVE-2023-28509
2023-03-29 21:15:08
cve
cve
CVE-2023-28509
2023-03-29 21:15:08
rapid7blog
rapid7blog
Multiple Vulnerabilities in Rocket Software UniRPC server (Fixed)
2023-03-29 15:21:09