Shodan
Vulnerabilities
Vulnerable Software
Unisys:  Security Vulnerabilities
CVE-2024-23758
An issue discovered in Unisys Stealth 5.3.062.0 allows attackers to view sensitive information via the Enterprise ManagementInstaller_msi.log file.
CVSS Score
7.5
EPSS Score
0.002
Published
2024-02-20
CVE-2022-32555
Unisys Data Exchange Management Studio before 6.0.IC2 and 7.x before 7.0.IC1 doesn't have an Anti-CSRF token to authenticate the POST request. Thus, a cross-site request forgery attack could occur.
CVSS Score
8.8
EPSS Score
0.002
Published
2022-09-13
CVE-2021-43394
Unisys OS 2200 Messaging Integration Services (NTSI) 7R3B IC3 and IC4, 7R3C, and 7R3D has an Incorrect Implementation of an Authentication Algorithm. An LDAP password is not properly validated.
CVSS Score
9.8
EPSS Score
0.004
Published
2022-01-24
CVE-2021-45445
Unisys ClearPath MCP TCP/IP Networking Services 59.1, 60.0, and 62.0 has an Infinite Loop.
CVSS Score
7.5
EPSS Score
0.005
Published
2022-01-12
CVE-2021-43388
Unisys Cargo Mobile Application before 1.2.29 uses cleartext to store sensitive information, which might be revealed in a backup. The issue is addressed by ensuring that the allowBackup flag (in the manifest) is False.
CVSS Score
7.5
EPSS Score
0.002
Published
2021-12-14
CVE-2021-35056
Unisys Stealth 5.1 before 5.1.025.0 and 6.0 before 6.0.055.0 has an unquoted Windows search path for a scheduled task. An unintended executable might run.
CVSS Score
6.7
EPSS Score
0.001
Published
2021-07-15
CVE-2020-35542
Unisys Data Exchange Management Studio through 5.0.34 doesn't sanitize the input to a HTML document field. This could be used for an XSS attack.
CVSS Score
5.4
EPSS Score
0.003
Published
2021-04-27
CVE-2021-28492
Unisys Stealth (core) 5.x before 5.0.048.0, 5.1.x before 5.1.017.0, and 6.x before 6.0.037.0 stores passwords in a recoverable format.
CVSS Score
4.9
EPSS Score
0.003
Published
2021-04-20
CVE-2021-3141
In Unisys Stealth (core) before 6.0.025.0, the Keycloak password is stored in a recoverable format that might be accessible by a local attacker, who could gain access to the Management Server and change the Stealth configuration.
CVSS Score
7.8
EPSS Score
0.0
Published
2021-03-18
CVE-2020-24620
Unisys Stealth(core) before 4.0.134 stores passwords in a recoverable format. Therefore, a search of Enterprise Manager can potentially reveal credentials.
CVSS Score
7.8
EPSS Score
0.0
Published
2020-10-01


Products
Pricing
Contact Us

Shodan ® - All rights reserved