Vulnerability Details CVE-2023-28507
Rocket Software UniData versions prior to 8.2.4 build 3003 and UniVerse versions prior to 11.3.5 build 1001 or 12.2.1 build 2002 suffer from a memory-exhaustion issue, where a decompression routine will allocate increasing amounts of memory until all system memory is exhausted and the forked process crashes.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 37.5%
CVSS Severity
CVSS v3 Score 9.8
References
Products affected by CVE-2023-28507
-
cpe:2.3:a:rocketsoftware:unidata:8.2.4
-
cpe:2.3:a:rocketsoftware:universe:11.3.5
-
cpe:2.3:a:rocketsoftware:universe:12.0.0
-
cpe:2.3:a:rocketsoftware:universe:12.2.1
-
cpe:2.3:o:linux:linux_kernel:-