Lucene search
K

89 matches found

OSV
OSV
added 2023/03/29 9:15 p.m.6 views

CVE-2023-28505

Rocket Software UniData versions prior to 8.2.4 build 3003 and UniVerse versions prior to 11.3.5 build 1001 or 12.2.1 build 2002 suffer from a buffer overflow in an API function, where a string is copied into a caller-provided buffer without checking the length. This requires a valid login to...

8.8CVSS7.6AI score0.0084EPSS
Exploits0References1
NVD
NVD
added 2023/03/29 9:15 p.m.26 views

CVE-2023-28507

Rocket Software UniData versions prior to 8.2.4 build 3003 and UniVerse versions prior to 11.3.5 build 1001 or 12.2.1 build 2002 suffer from a memory-exhaustion issue, where a decompression routine will allocate increasing amounts of memory until all system memory is exhausted and the forked...

9.8CVSS9.4AI score0.00923EPSS
Exploits0References1
OSV
OSV
added 2023/03/29 9:15 p.m.4 views

CVE-2023-28509

Rocket Software UniData versions prior to 8.2.4 build 3003 and UniVerse versions prior to 11.3.5 build 1001 or 12.2.1 build 2002 use weak encryption for packet-level security and passwords transferred on the wire...

7.5CVSS7.2AI score0.00281EPSS
Exploits0References1
NVD
NVD
added 2023/03/29 9:15 p.m.32 views

CVE-2023-28503

Rocket Software UniData versions prior to 8.2.4 build 3003 and UniVerse versions prior to 11.3.5 build 1001 or 12.2.1 build 2002 suffer from an authentication bypass vulnerability, where a special username with a deterministic password can be leveraged to bypass authentication checks and execute ...

9.8CVSS9.9AI score0.62136EPSS
Exploits2References2
NVD
NVD
added 2023/03/29 9:15 p.m.21 views

CVE-2023-28508

Rocket Software UniData versions prior to 8.2.4 build 3003 and UniVerse versions prior to 11.3.5 build 1001 or 12.2.1 build 2002 suffer from a heap-based overflow vulnerability, where certain input can corrupt the heap and crash the forked process...

8.8CVSS8.8AI score0.00897EPSS
Exploits0References1
OSV
OSV
added 2023/03/29 9:15 p.m.5 views

CVE-2023-28502

Rocket Software UniData versions prior to 8.2.4 build 3003 and UniVerse versions prior to 11.3.5 build 1001 or 12.2.1 build 2002 suffer from a stack-based buffer overflow in the "udadmin" service that can lead to remote code execution as the root user...

9.8CVSS6.8AI score0.61102EPSS
Exploits2References2
NVD
NVD
added 2023/03/29 9:15 p.m.21 views

CVE-2023-28506

Rocket Software UniData versions prior to 8.2.4 build 3003 and UniVerse versions prior to 11.3.5 build 1001 or 12.2.1 build 2002 suffer from a stack-based buffer overflow, where a string is copied into a buffer using a memcpy-like function and a user-provided length. This requires a valid login t...

8.8CVSS8.8AI score0.00911EPSS
Exploits0References1
OSV
OSV
added 2023/03/29 9:15 p.m.5 views

CVE-2023-28506

Rocket Software UniData versions prior to 8.2.4 build 3003 and UniVerse versions prior to 11.3.5 build 1001 or 12.2.1 build 2002 suffer from a stack-based buffer overflow, where a string is copied into a buffer using a memcpy-like function and a user-provided length. This requires a valid login t...

8.8CVSS7.7AI score0.00911EPSS
Exploits0References1
NVD
NVD
added 2023/03/29 9:15 p.m.33 views

CVE-2023-28504

Rocket Software UniData versions prior to 8.2.4 build 3003 and UniVerse versions prior to 11.3.5 build 1001 or 12.2.1 build 2002 suffer from a stack-based buffer overflow that can lead to remote code execution as the root user...

9.8CVSS10AI score0.01418EPSS
Exploits0References1
Prion
Prion
added 2023/03/29 9:15 p.m.18 views

Design/Logic Flaw

Rocket Software UniData versions prior to 8.2.4 build 3003 and UniVerse versions prior to 11.3.5 build 1001 or 12.2.1 build 2002 suffer from a memory-exhaustion issue, where a decompression routine will allocate increasing amounts of memory until all system memory is exhausted and the forked...

7.5CVSS9.3AI score0.00923EPSS
Exploits0References1Affected Software2
Prion
Prion
added 2023/03/29 9:15 p.m.19 views

Design/Logic Flaw

Rocket Software UniData versions prior to 8.2.4 build 3003 and UniVerse versions prior to 11.3.5 build 1001 or 12.2.1 build 2002 use weak encryption for packet-level security and passwords transferred on the wire...

5CVSS7.6AI score0.00281EPSS
Exploits0References1Affected Software2
Prion
Prion
added 2023/03/29 9:15 p.m.14 views

Stack overflow

Rocket Software UniData versions prior to 8.2.4 build 3003 and UniVerse versions prior to 11.3.5 build 1001 or 12.2.1 build 2002 suffer from a stack-based buffer overflow that can lead to remote code execution as the root user...

7.5CVSS9.8AI score0.01418EPSS
Exploits0References1Affected Software2
Prion
Prion
added 2023/03/29 9:15 p.m.15 views

Buffer overflow

Rocket Software UniData versions prior to 8.2.4 build 3003 and UniVerse versions prior to 11.3.5 build 1001 or 12.2.1 build 2002 suffer from a buffer overflow in an API function, where a string is copied into a caller-provided buffer without checking the length. This requires a valid login to...

6.5CVSS8.8AI score0.0084EPSS
Exploits0References1Affected Software2
Prion
Prion
added 2023/03/29 9:15 p.m.20 views

Heap overflow

Rocket Software UniData versions prior to 8.2.4 build 3003 and UniVerse versions prior to 11.3.5 build 1001 or 12.2.1 build 2002 suffer from a heap-based overflow vulnerability, where certain input can corrupt the heap and crash the forked process...

6.5CVSS8.7AI score0.00897EPSS
Exploits0References1Affected Software2
Prion
Prion
added 2023/03/29 9:15 p.m.17 views

Stack overflow

Rocket Software UniData versions prior to 8.2.4 build 3003 and UniVerse versions prior to 11.3.5 build 1001 or 12.2.1 build 2002 suffer from a stack-based buffer overflow in the "udadmin" service that can lead to remote code execution as the root user...

7.5CVSS9.8AI score0.61102EPSS
Exploits2References2Affected Software2
Prion
Prion
added 2023/03/29 9:15 p.m.27 views

Authentication flaw

Rocket Software UniData versions prior to 8.2.4 build 3003 and UniVerse versions prior to 11.3.5 build 1001 or 12.2.1 build 2002 suffer from an authentication bypass vulnerability, where a special username with a deterministic password can be leveraged to bypass authentication checks and execute ...

7.5CVSS9.8AI score0.62136EPSS
Exploits2References2Affected Software2
Prion
Prion
added 2023/03/29 9:15 p.m.19 views

Stack overflow

Rocket Software UniData versions prior to 8.2.4 build 3003 and UniVerse versions prior to 11.3.5 build 1001 or 12.2.1 build 2002 suffer from a stack-based buffer overflow, where a string is copied into a buffer using a memcpy-like function and a user-provided length. This requires a valid login t...

6.5CVSS8.7AI score0.00911EPSS
Exploits0References1Affected Software2
Vulnrichment
Vulnrichment
added 2023/03/29 8:18 p.m.11 views

CVE-2023-28509 Weak encryption in UniRPC protocol

Rocket Software UniData versions prior to 8.2.4 build 3003 and UniVerse versions prior to 11.3.5 build 1001 or 12.2.1 build 2002 use weak encryption for packet-level security and passwords transferred on the wire...

7AI score0.00281EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/03/29 8:18 p.m.29 views

CVE-2023-28509 Weak encryption in UniRPC protocol

Rocket Software UniData versions prior to 8.2.4 build 3003 and UniVerse versions prior to 11.3.5 build 1001 or 12.2.1 build 2002 use weak encryption for packet-level security and passwords transferred on the wire...

7.8AI score0.00281EPSS
Exploits0References1
CVE
CVE
added 2023/03/29 8:18 p.m.75 views

CVE-2023-28509

CVE-2023-28509 affects Rocket Software UniData/UniVerse, where packet-level security and on-wire passwords are protected with weak encryption. Affected versions: UniData < 8.2.4 build 3003; UniVerse < 11.3.5 build 1001; UniVerse

7.5CVSS7.8AI score0.00281EPSS
Exploits0References1Affected Software2
Rows per page
Query Builder