CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-28509

Rocket Software UniData versions prior to 8.2.4 build 3003 and UniVerse versions prior to 11.3.5 build 1001 or 12.2.1 build 2002 use weak encryption for packet-level security and passwords transferred on the wire.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 19.0%

CVSS Severity

CVSS v3 Score 7.5

References

https://www.rapid7.com/blog/post/2023/03/29/multiple-vulnerabilities-in-rocket-software-unirpc-server-fixed/
https://www.rapid7.com/blog/post/2023/03/29/multiple-vulnerabilities-in-rocket-software-unirpc-server-fixed/

Products affected by CVE-2023-28509

Rocketsoftware » Unidata » Version: 8.2.4

cpe:2.3:a:rocketsoftware:unidata:8.2.4
Rocketsoftware » Universe » Version: 11.3.5

cpe:2.3:a:rocketsoftware:universe:11.3.5
Rocketsoftware » Universe » Version: 12.0.0

cpe:2.3:a:rocketsoftware:universe:12.0.0
Rocketsoftware » Universe » Version: 12.2.1

cpe:2.3:a:rocketsoftware:universe:12.2.1
Linux » Linux Kernel » Version: N/A

cpe:2.3:o:linux:linux_kernel:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-28509

Products

Pricing

Contact Us