CVE-2023-28508: 
NixOS vulnerability analysis and mitigation

CVE-2023-28508 is a post-authentication heap overflow vulnerability discovered in Rocket Software's UniData and UniVerse's udsub service. The vulnerability affects UniData versions prior to 8.2.4 build 3003 and UniVerse versions prior to 11.3.5 build 1001 or 12.2.1 build 2002, where certain input can corrupt the heap and crash the forked process. The vulnerability was discovered in early 2023 and was reported to Rocket Software on January 24, 2023 (Rapid7 Blog).

The vulnerability is a heap-based overflow in the udsub service that can be triggered post-authentication. However, due to the presence of an authentication bypass vulnerability (CVE-2023-28503) in the same software, this vulnerability can effectively be exploited pre-authentication. The issue has been assigned a CVSS v3.1 base score of 8.8 (HIGH) with the vector string CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H (NVD).

When exploited, the vulnerability can lead to heap corruption and process crashes. Given that these services typically run with elevated privileges and are used by large organizations to store and manage data, successful exploitation could potentially allow attackers who have gained unauthorized network access to escalate their privileges or access sensitive data (Rapid7 Blog).

Rocket Software has released patches to address this vulnerability. Customers are strongly advised to upgrade to UniData version 8.2.4 build 3003, UniVerse version 11.3.5 build 1001, or UniVerse version 12.2.1 build 2002, depending on their deployment. The vulnerability does not affect Windows versions of the software as they use a different networking stack (Rapid7 Blog).