CVSS: 9.8EPSS: 0%CPEs: 4EXPL: 0CVE-2023-28504 – Stack buffer overflow in UniRPC library function
https://notcve.org/view.php?id=CVE-2023-28504
Rocket Software UniData versions prior to 8.2.4 build 3003 and UniVerse versions prior to 11.3.5 build 1001 or 12.2.1 build 2002 suffer from a stack-based buffer overflow that can lead to remote code execution as the root user. • https://www.rapid7.com/blog/post/2023/03/29/multiple-vulnerabilities-in-rocket-software-unirpc-server-fixed • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') CWE-787: Out-of-bounds Write •
CVSS: 9.8EPSS: 3%CPEs: 4EXPL: 0CVE-2023-28503 – Authentication bypass in UniRPC's udadmin service
https://notcve.org/view.php?id=CVE-2023-28503
Rocket Software UniData versions prior to 8.2.4 build 3003 and UniVerse versions prior to 11.3.5 build 1001 or 12.2.1 build 2002 suffer from an authentication bypass vulnerability, where a special username with a deterministic password can be leveraged to bypass authentication checks and execute OS commands as the root user. • http://packetstormsecurity.com/files/171854/Rocket-Software-Unidata-udadmin_server-Authentication-Bypass.html https://www.rapid7.com/blog/post/2023/03/29/multiple-vulnerabilities-in-rocket-software-unirpc-server-fixed • CWE-287: Improper Authentication CWE-798: Use of Hard-coded Credentials •
CVSS: 9.8EPSS: 13%CPEs: 4EXPL: 0CVE-2023-28502 – Stack buffer overflow in UniRPC's udadmin_server service
https://notcve.org/view.php?id=CVE-2023-28502
Rocket Software UniData versions prior to 8.2.4 build 3003 and UniVerse versions prior to 11.3.5 build 1001 or 12.2.1 build 2002 suffer from a stack-based buffer overflow in the "udadmin" service that can lead to remote code execution as the root user. • http://packetstormsecurity.com/files/171853/Rocket-Software-Unidata-8.2.4-Build-3003-Buffer-Overflow.html https://www.rapid7.com/blog/post/2023/03/29/multiple-vulnerabilities-in-rocket-software-unirpc-server-fixed • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') CWE-787: Out-of-bounds Write •
CVSS: 9.8EPSS: 0%CPEs: 4EXPL: 0CVE-2023-28501 – Heap buffer overflow in unirpcd
https://notcve.org/view.php?id=CVE-2023-28501
Rocket Software UniData versions prior to 8.2.4 build 3003 and UniVerse versions prior to 11.3.5 build 1001 or 12.2.1 build 2002 suffer from a heap-based buffer overflow in the unirpcd daemon that, if successfully exploited, can lead to remote code execution as the root user. • https://www.rapid7.com/blog/post/2023/03/29/multiple-vulnerabilities-in-rocket-software-unirpc-server-fixed • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2022-25027
https://notcve.org/view.php?id=CVE-2022-25027
The Forgotten Password functionality of Rocket TRUfusion Portal v7.9.2.1 allows remote attackers to bypass authentication and access restricted pages by validating the user's session token when the "Password forgotten?" button is clicked. La funcionalidad de contraseña olvidada de Rocket TRUfusion Portal v7.9.2.1 permite a atacantes remotos evitar la autenticación y acceder a páginas restringidas validando el token de sesión del usuario cuando se hace clic en el boton "¿Olvidó su contraseña?". • https://labs.nettitude.com/blog/cve-2022-25026-cve-2022-25027-vulnerabilities-in-rocket-trufusion-enterprise • CWE-640: Weak Password Recovery Mechanism for Forgotten Password •