Medium severity6.8NVD Advisory· Published Feb 3, 2017· Updated May 13, 2026

CVE-2015-4049

Description

Unisys Libra 43xx, 63xx, and 83xx, and FS600 class systems with MCP-FIRMWARE 40.0 before 40.0IC4 Build 270 might allow remote authenticated users to cause a denial of service (data corruption or system crash) via vectors related to using program operators during EPSILON (level 5) based codefiles at peak memory usage, which triggers CPM stack corruption.

Affected products

Unisys/Mcp Firmware
cpe:2.3:o:unisys:mcp-firmware:40.0:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

public.support.unisys.com/common/public/vulnerability/NVD_Detail_Rpt.aspxnvdVendor Advisory

News mentions

No linked articles in our index yet.

cvss	0.442
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000