Known Vulnerabilities for products from Unisys
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Unisys".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Additional devices specifications by Unisys can be found at device.report : Unisys
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2021-43394 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 9.8 - CRITICAL | 2022-01-24 | 2022-01-31 |
| CVE-2021-43388 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 7.5 - HIGH | 2021-12-14 | 2021-12-16 |
| CVE-2021-35056 | Unisys Stealth 5.1 before 5.1.025.0 and 6.0 before 6.0.055.0 has an unquoted Windows search path for a scheduled task. An uni... | 6.7 - MEDIUM | 2021-07-15 | 2021-07-27 |
| CVE-2021-28492 | Unisys Stealth (core) 5.x before 5.0.048.0, 5.1.x before 5.1.017.0, and 6.x before 6.0.037.0 stores passwords in a recoverabl... | 4.9 - MEDIUM | 2021-04-20 | 2021-05-04 |
| CVE-2021-3141 | In Unisys Stealth (core) before 6.0.025.0, the Keycloak password is stored in a recoverable format that might be accessible b... | 7.8 - HIGH | 2021-03-18 | 2021-03-25 |
| CVE-2020-35542 | Unisys Data Exchange Management Studio through 5.0.34 doesn't sanitize the input to a HTML document field. This could be used... | 5.4 - MEDIUM | 2021-04-27 | 2021-05-06 |
| CVE-2020-24620 | Unisys Stealth(core) before 4.0.134 stores passwords in a recoverable format. Therefore, a search of Enterprise Manager can p... | 7.8 - HIGH | 2020-10-01 | 2021-02-12 |
| CVE-2020-12647 | Unisys ALGOL Compiler 58.1 before 58.1a.15, 59.1 before 59.1a.9, and 60.0 before 60.0a.5 can emit invalid code sequences unde... | 8.8 - HIGH | 2020-05-21 | 2020-06-01 |
| CVE-2020-12053 | In Unisys Stealth 3.4.x, 4.x and 5.x before 5.0.026, if certificate-based authorization is used without HTTPS, an endpoint co... | 9.8 - CRITICAL | 2020-06-22 | 2020-06-29 |
| CVE-2019-18386 | Systems management on Unisys ClearPath Forward Libra and ClearPath MCP Software Series can fault and have other unspecified i... | 8.7 - HIGH | 2020-01-07 | 2021-07-21 |
| CVE-2019-18193 | In Unisys Stealth (core) 3.4.108.0, 3.4.209.x, 4.0.027.x and 4.0.114, key material inadvertently logged under certain conditi... | 7.5 - HIGH | 2020-02-03 | 2020-04-09 |
| CVE-2018-8802 | SQL injection vulnerability in the management interface in ePortal Manager allows remote attackers to execute arbitrary SQL ... | 8.1 - HIGH | 2018-03-26 | 2018-08-21 |
| CVE-2018-8049 | The Stealth endpoint in Unisys Stealth SVG 2.8.x, 3.0.x before 3.0.1999, 3.1.x, 3.2.x before 3.2.030, and 3.3.x before 3.3.01... | 7.5 - HIGH | 2018-04-03 | 2018-05-21 |
| CVE-2018-7534 | In Stealth Authorization Server before 3.3.017.0 in Unisys Stealth Solution, an encryption key may be left in memory. | 4.7 - MEDIUM | 2018-05-30 | 2018-07-05 |
| CVE-2018-6592 | Unisys Stealth 3.3 Windows endpoints before 3.3.016.1 allow local users to gain access to Stealth-enabled devices by leveragi... | 7.8 - HIGH | 2018-02-19 | 2019-10-03 |
| CVE-2018-5762 | The TLS implementation in the TCP/IP networking module in Unisys ClearPath MCP systems with TCP-IP-SW 58.1 before 58.160, 59.... | 5.9 - MEDIUM | 2018-02-26 | 2019-10-03 |
| CVE-2017-13684 | Unisys Libra 64xx and 84xx and FS601 class systems with MCP-FIRMWARE before 43.211 allow remote authenticated users to cause ... | 7.8 - HIGH | 2017-09-30 | 2017-10-10 |
| CVE-2017-5873 | Unquoted Windows search path vulnerability in the guest service in Unisys s-Par before 4.4.20 allows local users to gain priv... | 6.7 - MEDIUM | 2017-04-11 | 2017-04-17 |
| CVE-2017-5872 | The TCP/IP networking module in Unisys ClearPath MCP systems with TCP-IP-SW 57.1 before 57.152, 58.1 before 58.142, or 59.1 b... | 7.5 - HIGH | 2017-03-10 | 2017-03-16 |
| CVE-2016-7805 | The mobiGate App for Android version 2.2.1.2 and earlier and mobiGate App for iOS version 2.2.4.1 and earlier do not verify X... | 5.9 - MEDIUM | 2017-06-09 | 2017-06-16 |
Known software with vulnerabilities from Unisys
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Unisys | Algol Compiler | 58.1 |
| Operating System | Unisys | Clearpath Mcp | - |
| Operating System | Unisys | Clearpath Os 2200 | 6.1 |
| Application | Unisys | Enterprise Output Manager | 6.1.0 |
| Application | Unisys | Enterprise Output Manager Client | 7.1.6 |
| Application | Unisys | Enterprise Output Manager Secure E-mail | 1.0.0.0 |
| Application | Unisys | Enterprise Output Manager Service | 7.1.6 |
| Hardware | Unisys | Fs600 | - |
| Hardware | Unisys | Libra 4300 | - |
| Hardware | Unisys | Libra 6300 | - |
| Hardware | Unisys | Libra 8300 | - |
| Operating System | Unisys | Mcp Firmware | 40.0 |
| Application | Unisys | Sentinel Alert Service | 9.2.8 |
| Application | Unisys | Sma Microsoft Lsam .net | 5.3.3.0 |
| Application | Unisys | Sma Sam And Supporting Services | 4.25.5 |
| Application | Unisys | Sma User Interface | 4.25.4 |
| Application | Unisys | Stealth | 2.5 |
| Application | Unisys | Stealth Svg | 2.8 |