Описание
Rocket Software UniData versions prior to 8.2.4 build 3003 and UniVerse versions prior to 11.3.5 build 1001 or 12.2.1 build 2002 suffer from a heap-based buffer overflow in the unirpcd daemon that, if successfully exploited, can lead to remote code execution as the root user.
Уязвимые конфигурации
Конфигурация 1Версия до 8.2.4 (включая)Версия до 11.3.5 (включая)Версия от 12.0.0 (включая) до 12.2.1 (включая)
Одновременно
Одно из
cpe:2.3:a:rocketsoftware:unidata:*:*:*:*:*:*:*:*
cpe:2.3:a:rocketsoftware:universe:*:*:*:*:*:*:*:*
cpe:2.3:a:rocketsoftware:universe:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
EPSS
Процентиль: 85%
0.02686
Низкий
9.8 Critical
CVSS3
Дефекты
CWE-190
CWE-190
Связанные уязвимости
CVSS3: 9.8
github
почти 3 года назад
Rocket Software UniData versions prior to 8.2.4 build 3003 and UniVerse versions prior to 11.3.5 build 1001 or 12.2.1 build 2002 suffer from a heap-based buffer overflow in the unirpcd daemon that, if successfully exploited, can lead to remote code execution as the root user.
EPSS
Процентиль: 85%
0.02686
Низкий
9.8 Critical
CVSS3
Дефекты
CWE-190
CWE-190