CVE-2023-28508

CVE-2023-28508: Heap corruption in UniRPC service

Vendor Rocket Software
Product UniData
Weakness CWE-120
Published March 29, 2023
Last update February 18, 2025

CVSS base score

What the vulnerability does

01Description

Rocket Software UniData versions prior to 8.2.4 build 3003 and UniVerse versions prior to 11.3.5 build 1001 or 12.2.1 build 2002 suffer from a heap-based overflow vulnerability, where certain input can corrupt the heap and crash the forked process.

Key dates

02Disclosure timeline

March 29, 2023 CVE published
February 18, 2025 Record updated