Rocketsoftware

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2025-32355 1Rocketsoftware 1Trufusion Enterprise Apr 3, 2026 Feb 17, 2026 7.9 HIGH· v4 7.3 HIGH· v3 N/A· v2 Rocket TRUfusion Enterprise through 7.10.4.0 uses a reverse proxy to handle incoming connections. However, the proxy is misconfigured in a way that allows specifying absolute URLs in the HTTP request line, causing the pr...Show more Rocket TRUfusion Enterprise through 7.10.4.0 uses a reverse proxy to handle incoming connections. However, the proxy is misconfigured in a way that allows specifying absolute URLs in the HTTP request line, causing the proxy to load the given resource.Show less
CVE-2025-59793 1Rocketsoftware 1Trufusion Enterprise Apr 3, 2026 Feb 17, 2026 9.4 CRITICAL· v4 9.9 CRITICAL· v3 N/A· v2 Rocket TRUfusion Enterprise through 7.10.5 exposes the endpoint at /axis2/services/WsPortalV6UpDwAxis2Impl to authenticated users to be able to upload files. However, the application doesn't properly sanitize the jobDire...Show more Rocket TRUfusion Enterprise through 7.10.5 exposes the endpoint at /axis2/services/WsPortalV6UpDwAxis2Impl to authenticated users to be able to upload files. However, the application doesn't properly sanitize the jobDirectory parameter, which allows path traversal sequences to be included. This allows writing files to arbitrary local filesystem locations and may subsequently lead to remote code execution.Show less
CVE-2025-27225 1Rocketsoftware 1Trufusion Enterprise Oct 31, 2025 Oct 27, 2025 N/A· v4 7.5 HIGH· v3 N/A· v2 TRUfusion Enterprise through 7.10.4.0 exposes the /trufusionPortal/jsp/internal_admin_contact_login.jsp endpoint to unauthenticated users. This endpoint discloses sensitive internal information including PII to unauthent...Show more TRUfusion Enterprise through 7.10.4.0 exposes the /trufusionPortal/jsp/internal_admin_contact_login.jsp endpoint to unauthenticated users. This endpoint discloses sensitive internal information including PII to unauthenticated attackers.Show less
CVE-2025-27224 1Rocketsoftware 1Trufusion Enterprise Oct 31, 2025 Oct 27, 2025 N/A· v4 9.8 CRITICAL· v3 N/A· v2 TRUfusion Enterprise through 7.10.4.0 uses the /trufusionPortal/fileupload endpoint to upload files. However, the application doesn't properly sanitize the input to this endpoint, ultimately allowing path traversal seque...Show more TRUfusion Enterprise through 7.10.4.0 uses the /trufusionPortal/fileupload endpoint to upload files. However, the application doesn't properly sanitize the input to this endpoint, ultimately allowing path traversal sequences to be included. This can be used to write to any filename with any file type at any location on the local server, ultimately allowing execution of arbitrary code.Show less
CVE-2025-27223 1Rocketsoftware 1Trufusion Enterprise Oct 31, 2025 Oct 27, 2025 N/A· v4 7.5 HIGH· v3 N/A· v2 TRUfusion Enterprise through 7.10.4.0 exposes the encrypted COOKIEID as an authentication mechanism for some endpoints such as /trufusionPortal/getProjectList. However, the application uses a static key to create the enc...Show more TRUfusion Enterprise through 7.10.4.0 exposes the encrypted COOKIEID as an authentication mechanism for some endpoints such as /trufusionPortal/getProjectList. However, the application uses a static key to create the encrypted cookie, ultimately allowing anyone to forge cookies and gain access to sensitive internal information.Show less
CVE-2025-27222 1Rocketsoftware 1Trufusion Enterprise Nov 3, 2025 Oct 27, 2025 N/A· v4 8.6 HIGH· v3 N/A· v2 TRUfusion Enterprise through 7.10.4.0 uses the /trufusionPortal/getCobrandingData endpoint to retrieve files. However, the application doesn't properly sanitize the input to this endpoint, ultimately allowing path traver...Show more TRUfusion Enterprise through 7.10.4.0 uses the /trufusionPortal/getCobrandingData endpoint to retrieve files. However, the application doesn't properly sanitize the input to this endpoint, ultimately allowing path traversal sequences to be included. This can be used to read any local server file that is accessible by the TRUfusion user and can also be used to leak cleartext passwords of TRUfusion Enterprise itself.Show less
CVE-2024-45955 1Rocketsoftware 1Zena Aug 6, 2025 Jul 30, 2025 N/A· v4 7.3 HIGH· v3 N/A· v2 Rocket Software Rocket Zena 4.4.1.26 is vulnerable to SQL Injection via the filter parameter.
CVE-2023-28509 1Rocketsoftware 2Unidata Universe Feb 18, 2025 Mar 29, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 Rocket Software UniData versions prior to 8.2.4 build 3003 and UniVerse versions prior to 11.3.5 build 1001 or 12.2.1 build 2002 use weak encryption for packet-level security and passwords transferred on the wire.
CVE-2023-28508 1Rocketsoftware 2Unidata Universe Feb 18, 2025 Mar 29, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 Rocket Software UniData versions prior to 8.2.4 build 3003 and UniVerse versions prior to 11.3.5 build 1001 or 12.2.1 build 2002 suffer from a heap-based overflow vulnerability, where certain input can corrupt the heap a...Show more Rocket Software UniData versions prior to 8.2.4 build 3003 and UniVerse versions prior to 11.3.5 build 1001 or 12.2.1 build 2002 suffer from a heap-based overflow vulnerability, where certain input can corrupt the heap and crash the forked process.Show less
CVE-2023-28507 1Rocketsoftware 2Unidata Universe Feb 18, 2025 Mar 29, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Rocket Software UniData versions prior to 8.2.4 build 3003 and UniVerse versions prior to 11.3.5 build 1001 or 12.2.1 build 2002 suffer from a memory-exhaustion issue, where a decompression routine will allocate increasi...Show more Rocket Software UniData versions prior to 8.2.4 build 3003 and UniVerse versions prior to 11.3.5 build 1001 or 12.2.1 build 2002 suffer from a memory-exhaustion issue, where a decompression routine will allocate increasing amounts of memory until all system memory is exhausted and the forked process crashes.Show less
CVE-2023-28506 1Rocketsoftware 2Unidata Universe Feb 18, 2025 Mar 29, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 Rocket Software UniData versions prior to 8.2.4 build 3003 and UniVerse versions prior to 11.3.5 build 1001 or 12.2.1 build 2002 suffer from a stack-based buffer overflow, where a string is copied into a buffer using a m...Show more Rocket Software UniData versions prior to 8.2.4 build 3003 and UniVerse versions prior to 11.3.5 build 1001 or 12.2.1 build 2002 suffer from a stack-based buffer overflow, where a string is copied into a buffer using a memcpy-like function and a user-provided length. This requires a valid login to exploit.Show less
CVE-2023-28505 1Rocketsoftware 2Unidata Universe Feb 18, 2025 Mar 29, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 Rocket Software UniData versions prior to 8.2.4 build 3003 and UniVerse versions prior to 11.3.5 build 1001 or 12.2.1 build 2002 suffer from a buffer overflow in an API function, where a string is copied into a caller-pr...Show more Rocket Software UniData versions prior to 8.2.4 build 3003 and UniVerse versions prior to 11.3.5 build 1001 or 12.2.1 build 2002 suffer from a buffer overflow in an API function, where a string is copied into a caller-provided buffer without checking the length. This requires a valid login to exploit.Show less
CVE-2023-28504 1Rocketsoftware 2Unidata Universe Feb 18, 2025 Mar 29, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Rocket Software UniData versions prior to 8.2.4 build 3003 and UniVerse versions prior to 11.3.5 build 1001 or 12.2.1 build 2002 suffer from a stack-based buffer overflow that can lead to remote code execution as the roo...Show more Rocket Software UniData versions prior to 8.2.4 build 3003 and UniVerse versions prior to 11.3.5 build 1001 or 12.2.1 build 2002 suffer from a stack-based buffer overflow that can lead to remote code execution as the root user.Show less
CVE-2023-28503 1Rocketsoftware 2Unidata Universe Feb 18, 2025 Mar 29, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Rocket Software UniData versions prior to 8.2.4 build 3003 and UniVerse versions prior to 11.3.5 build 1001 or 12.2.1 build 2002 suffer from an authentication bypass vulnerability, where a special username with a determi...Show more Rocket Software UniData versions prior to 8.2.4 build 3003 and UniVerse versions prior to 11.3.5 build 1001 or 12.2.1 build 2002 suffer from an authentication bypass vulnerability, where a special username with a deterministic password can be leveraged to bypass authentication checks and execute OS commands as the root user.Show less
CVE-2023-28502 1Rocketsoftware 2Unidata Universe Feb 18, 2025 Mar 29, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Rocket Software UniData versions prior to 8.2.4 build 3003 and UniVerse versions prior to 11.3.5 build 1001 or 12.2.1 build 2002 suffer from a stack-based buffer overflow in the "udadmin" service that can lead to remote...Show more Rocket Software UniData versions prior to 8.2.4 build 3003 and UniVerse versions prior to 11.3.5 build 1001 or 12.2.1 build 2002 suffer from a stack-based buffer overflow in the "udadmin" service that can lead to remote code execution as the root user.Show less
CVE-2023-28501 1Rocketsoftware 2Unidata Universe Feb 18, 2025 Mar 29, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Rocket Software UniData versions prior to 8.2.4 build 3003 and UniVerse versions prior to 11.3.5 build 1001 or 12.2.1 build 2002 suffer from a heap-based buffer overflow in the unirpcd daemon that, if successfully exploi...Show more Rocket Software UniData versions prior to 8.2.4 build 3003 and UniVerse versions prior to 11.3.5 build 1001 or 12.2.1 build 2002 suffer from a heap-based buffer overflow in the unirpcd daemon that, if successfully exploited, can lead to remote code execution as the root user.Show less
CVE-2022-25027 1Rocketsoftware 1Trufusion Enterprise Apr 8, 2025 Jan 12, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 The Forgotten Password functionality of Rocket TRUfusion Portal v7.9.2.1 allows remote attackers to bypass authentication and access restricted pages by validating the user's session token when the "Password forgotten?"...Show more The Forgotten Password functionality of Rocket TRUfusion Portal v7.9.2.1 allows remote attackers to bypass authentication and access restricted pages by validating the user's session token when the "Password forgotten?" button is clicked.Show less
CVE-2022-25026 1Rocketsoftware 1Trufusion Enterprise Apr 8, 2025 Jan 12, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 A Server-Side Request Forgery (SSRF) in Rocket TRUfusion Portal v7.9.2.1 allows remote attackers to gain access to sensitive resources on the internal network via a crafted HTTP request to /trufusionPortal/upDwModuleProx...Show more A Server-Side Request Forgery (SSRF) in Rocket TRUfusion Portal v7.9.2.1 allows remote attackers to gain access to sensitive resources on the internal network via a crafted HTTP request to /trufusionPortal/upDwModuleProxy.Show less
CVE-2022-36431 1Rocketsoftware 1Trufusion Apr 24, 2025 Dec 1, 2022 N/A· v4 9.8 CRITICAL· v3 N/A· v2 An arbitrary file upload vulnerability in Rocket TRUfusion Enterprise before 7.9.6.1 allows unauthenticated attackers to execute arbitrary code via a crafted JSP file. Issue fixed in version 7.9.6.1.
CVE-2021-45026 1Rocketsoftware 1Ags Zena Nov 21, 2024 Jun 17, 2022 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 ASG technologies ASG-Zena Cross Platform Server Enterprise Edition 4.2.1 is vulnerable to Cross Site Scripting (XSS).

12 Next