Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
unisys vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2020-12053
In Unisys Stealth 3.4.x, 4.x and 5.x prior to 5.0.026, if certificate-based authorization is used without HTTPS, an endpoint could be authorized without a private key.
Unisys Stealth
7.8
CVSSv3
CVE-2021-3141
In Unisys Stealth (core) prior to 6.0.025.0, the Keycloak password is stored in a recoverable format that might be accessible by a local attacker, who could gain access to the Management Server and change the Stealth configuration.
Unisys Stealth
5.9
CVSSv3
CVE-2016-7805
The mobiGate App for Android version 2.2.1.2 and previous versions and mobiGate App for iOS version 2.2.4.1 and previous versions do not verify X.509 certificates from SSL servers, which allows man-in-the-middle malicious users to spoof servers and obtain sensitive information vi...
Unisys Mobigate
6.7
CVSSv3
CVE-2021-35056
Unisys Stealth 5.1 prior to 5.1.025.0 and 6.0 prior to 6.0.055.0 has an unquoted Windows search path for a scheduled task. An unintended executable might run.
Unisys Stealth
7.8
CVSSv3
CVE-2020-24620
Unisys Stealth(core) prior to 4.0.134 stores passwords in a recoverable format. Therefore, a search of Enterprise Manager can potentially reveal credentials.
Unisys Stealth
8.8
CVSSv3
CVE-2020-12647
Unisys ALGOL Compiler 58.1 prior to 58.1a.15, 59.1 prior to 59.1a.9, and 60.0 prior to 60.0a.5 can emit invalid code sequences under rare circumstances related to syntax. The resulting code could, for example, trigger a system fault or adversely affect confidentiality, integrity,...
Unisys Algol Compiler
5.9
CVSSv3
CVE-2018-5762
The TLS implementation in the TCP/IP networking module in Unisys ClearPath MCP systems with TCP-IP-SW 58.1 prior to 58.160, 59.1 prior to 059.1a.17 (IC #17), and 60.0 prior to 60.044 might allow remote malicious users to decrypt TLS ciphertext data by leveraging a Bleichenbacher ...
Unisys Clearpath Mcp
7.5
CVSSv3
CVE-2021-43388
Unisys Cargo Mobile Application prior to 1.2.29 uses cleartext to store sensitive information, which might be revealed in a backup. The issue is addressed by ensuring that the allowBackup flag (in the manifest) is False.
Unisys Cargo Mobile
8.7
CVSSv3
CVE-2019-18386
Systems management on Unisys ClearPath Forward Libra and ClearPath MCP Software Series can fault and have other unspecified impact when receiving specifically crafted message payloads over a systems management communication channel
Unisys Mcp Firmware
7.8
CVSSv3
CVE-2017-13684
Unisys Libra 64xx and 84xx and FS601 class systems with MCP-FIRMWARE prior to 43.211 allow remote authenticated users to cause a denial of service (program crash) or have unspecified other impact via vectors related to incorrect literal handling, which trigger CPM stack corruptio...
Unisys Mcp-firmware
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2024-34413
CVE-2024-34089
CVE-2024-33408
local
SQL
CVE-2024-0402
CVE-2024-33910
CVE-2024-31848
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »