Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
unisys vulnerabilities and exploits
(subscribe to this query)
6.9
CVSSv2
CVE-2019-18193
In Unisys Stealth (core) 3.4.108.0, 3.4.209.x, 4.0.027.x and 4.0.114, key material inadvertently logged under certain conditions. Fixed included in 3.4.109, 4.0.027.13, 4.0.125 and 5.0.013.0.
Unisys Stealth 3.4.108.0
Unisys Stealth 3.4.209.0
Unisys Stealth 4.0.027.0
Unisys Stealth 4.0.114
7.5
CVSSv2
CVE-2021-43394
Unisys OS 2200 Messaging Integration Services (NTSI) 7R3B IC3 and IC4, 7R3C, and 7R3D has an Incorrect Implementation of an Authentication Algorithm. An LDAP password is not properly validated.
Unisys Messaging Integration Services 7r3b Ic3
Unisys Messaging Integration Services 7r3b Ic4
Unisys Messaging Integration Services 7r3c
Unisys Messaging Integration Services 7r3d
5
CVSSv2
CVE-2017-5872
The TCP/IP networking module in Unisys ClearPath MCP systems with TCP-IP-SW 57.1 prior to 57.152, 58.1 prior to 58.142, or 59.1 prior to 59.172, when running a TLS 1.2 service, allows remote malicious users to cause a denial of service (network connectivity disruption) via a clie...
Unisys Clearpath Mcp 59.1
Unisys Clearpath Mcp 57.1
Unisys Clearpath Mcp 58.1
5
CVSSv2
CVE-2018-8049
The Stealth endpoint in Unisys Stealth SVG 2.8.x, 3.0.x prior to 3.0.1999, 3.1.x, 3.2.x prior to 3.2.030, and 3.3.x prior to 3.3.016, when running on Linux and AIX, allows remote malicious users to cause a denial of service (crash) via crafted packets.
Unisys Stealth Svg
Unisys Stealth Svg 2.8
10
CVSSv2
CVE-2009-1628
Stack-based buffer overflow in mnet.exe in Unisys Business Information Server (BIS) 10 and 10.1 on Windows allows remote malicious users to execute arbitrary code via a crafted TCP packet.
Unisys Business Information Server 10.1
Unisys Business Information Server 10
6.5
CVSSv2
CVE-2018-8802
SQL injection vulnerability in the management interface in ePortal Manager allows remote malicious users to execute arbitrary SQL commands via unspecified parameters.
Unisys Clearpath Eportal Manager
Unisys Eportal-2200
4.6
CVSSv2
CVE-2017-5873
Unquoted Windows search path vulnerability in the guest service in Unisys s-Par prior to 4.4.20 allows local users to gain privileges via a Trojan horse executable file in the %SYSTEMDRIVE% directory, as demonstrated by program.exe.
Unisys Secure Partitioning 4.4.19
Unisys Secure Partitioning 4.3.403
5
CVSSv2
CVE-2021-45445
Unisys ClearPath MCP TCP/IP Networking Services 59.1, 60.0, and 62.0 has an Infinite Loop.
Unisys Clearpath Mcp Tcp\\/ip Networking Services 59.1
Unisys Clearpath Mcp Tcp\\/ip Networking Services 60.0
Unisys Clearpath Mcp Tcp\\/ip Networking Services 62.0
NA
CVE-2022-32555
Unisys Data Exchange Management Studio prior to 6.0.IC2 and 7.x prior to 7.0.IC1 doesn't have an Anti-CSRF token to authenticate the POST request. Thus, a cross-site request forgery attack could occur.
Unisys Data Exchange Management Studio 7.0
Unisys Data Exchange Management Studio 6.0.ic1
2.1
CVSSv2
CVE-2021-3141
In Unisys Stealth (core) prior to 6.0.025.0, the Keycloak password is stored in a recoverable format that might be accessible by a local attacker, who could gain access to the Management Server and change the Stealth configuration.
Unisys Stealth
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-38028
CVE-2024-32406
CVE-2024-25624
IMAP
CVE-2024-2310
CVE-2024-0874
CVE-2024-20359
XXE
remote code execution
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »