VYPR

Stealth SVG

by Unisys

CVEs (5)

  • CVE-2018-6592HigFeb 19, 2018
    risk 0.51cvss 7.8epss 0.00

    Unisys Stealth 3.3 Windows endpoints before 3.3.016.1 allow local users to gain access to Stealth-enabled devices by leveraging improper cleanup of memory used for negotiation key storage.

  • CVE-2018-8049HigApr 3, 2018
    risk 0.49cvss 7.5epss 0.01

    The Stealth endpoint in Unisys Stealth SVG 2.8.x, 3.0.x before 3.0.1999, 3.1.x, 3.2.x before 3.2.030, and 3.3.x before 3.3.016, when running on Linux and AIX, allows remote attackers to cause a denial of service (crash) via crafted packets.

  • CVE-2021-35056Jul 15, 2021
    risk 0.00cvss epss 0.00

    Unisys Stealth 5.1 before 5.1.025.0 and 6.0 before 6.0.055.0 has an unquoted Windows search path for a scheduled task. An unintended executable might run.

  • CVE-2021-3141Mar 18, 2021
    risk 0.00cvss epss 0.00

    In Unisys Stealth (core) before 6.0.025.0, the Keycloak password is stored in a recoverable format that might be accessible by a local attacker, who could gain access to the Management Server and change the Stealth configuration.

  • CVE-2020-12053Jun 22, 2020
    risk 0.00cvss epss 0.01

    In Unisys Stealth 3.4.x, 4.x and 5.x before 5.0.026, if certificate-based authorization is used without HTTPS, an endpoint could be authorized without a private key.