RSS   Vulnerabilities for 'Stealth'   RSS

2021-04-20
 
CVE-2021-28492

NVD-CWE-Other
 

 
Unisys Stealth (core) 5.x before 5.0.048.0, 5.1.x before 5.1.017.0, and 6.x before 6.1.037.0 stores Passwords in a Recoverable Format.

 
2021-03-18
 
CVE-2021-3141

CWE-522
 

 
In Unisys Stealth (core) before 6.0.025.0, the Keycloak password is stored in a recoverable format that might be accessible by a local attacker, who could gain access to the Management Server and change the Stealth configuration.

 
2020-10-01
 
CVE-2020-24620

CWE-798
 

 
Unisys Stealth(core) before 4.0.134 stores passwords in a recoverable format. Therefore, a search of Enterprise Manager can potentially reveal credentials.

 
2020-06-22
 
CVE-2020-12053

CWE-863
 

 
In Unisys Stealth 3.4.x, 4.x and 5.x before 5.0.026, if certificate-based authorization is used without HTTPS, an endpoint could be authorized without a private key.

 
2020-02-03
 
CVE-2019-18193

CWE-20
 

 
In Unisys Stealth (core) 3.4.108.0, 3.4.209.x, 4.0.027.x and 4.0.114, key material may be inadvertently logged if certain diagnostics are enabled.

 

 >>> Vendor: Unisys 10 Products
Clearpath mcp
Business information server
Mcp-firmware
Secure partitioning
Mobigate
Stealth svg
Stealth
Algol compiler
Cargo mobile
Clearpath mcp tcp\/ip networking services


Copyright 2024, cxsecurity.com

 

Back to Top