3 matches found
CVE-2023-28503
creationtimestamp| type| source ---|---|--- 2023-03-30 00:16:03+00:00| seen| https://t.me/cibsecurity/61150 2023-04-12 09:58:37+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/misc/unidataudadminauthbypass.rb 2024-01-07 05:30:41+00:00| seen|...
CVE-2023-28503 Authentication bypass in UniRPC's udadmin service
Rocket Software UniData versions prior to 8.2.4 build 3003 and UniVerse versions prior to 11.3.5 build 1001 or 12.2.1 build 2002 suffer from an authentication bypass vulnerability, where a special username with a deterministic password can be leveraged to bypass authentication checks and execute ...
CVE-2023-28503
CVE-2023-28503 describes an authentication bypass in Rocket Software UniData/UniVerse UniRPC stack. The root cause is a flaw in libunidata.so and related RPC services that lets an attacker authenticate as a legitimate Linux user using a special username (:local:) and a deterministic, encoded pass...