VYPR

Vendor CVEs

Unisys

All CVEs

27 total · sorted by risk
  • CVE-2026-39907CriApr 14, 2026
    risk 0.65cvss 10.0epss 0.01

    Unisys WebPerfect Image Suite versions 3.0.3960.22810 and 3.0.3960.22604 expose an unauthenticated WCF SOAP endpoint on TCP port 1208 that accepts unsanitized file paths in the ReadLicense action's LFName parameter, allowing remote attackers to trigger SMB connections and leak…

  • CVE-2026-39906CriApr 14, 2026
    risk 0.65cvss 10.0epss 0.01

    Unisys WebPerfect Image Suite versions 3.0.3960.22810 and 3.0.3960.22604 expose a deprecated .NET Remoting TCP channel that allows remote unauthenticated attackers to leak NTLMv2 machine-account hashes by supplying a Windows UNC path as a target file argument through…

  • CVE-2018-8802HigMar 26, 2018
    risk 0.53cvss 8.1epss 0.01

    SQL injection vulnerability in the management interface in ePortal Manager allows remote attackers to execute arbitrary SQL commands via unspecified parameters.

  • CVE-2018-6592HigFeb 19, 2018
    risk 0.51cvss 7.8epss 0.00

    Unisys Stealth 3.3 Windows endpoints before 3.3.016.1 allow local users to gain access to Stealth-enabled devices by leveraging improper cleanup of memory used for negotiation key storage.

  • CVE-2017-13684HigSep 30, 2017
    risk 0.51cvss 7.8epss 0.00

    Unisys Libra 64xx and 84xx and FS601 class systems with MCP-FIRMWARE before 43.211 allow remote authenticated users to cause a denial of service (program crash) or have unspecified other impact via vectors related to incorrect literal handling, which trigger CPM stack corruption.

  • CVE-2018-8049HigApr 3, 2018
    risk 0.49cvss 7.5epss 0.01

    The Stealth endpoint in Unisys Stealth SVG 2.8.x, 3.0.x before 3.0.1999, 3.1.x, 3.2.x before 3.2.030, and 3.3.x before 3.3.016, when running on Linux and AIX, allows remote attackers to cause a denial of service (crash) via crafted packets.

  • CVE-2017-5872HigMar 10, 2017
    risk 0.49cvss 7.5epss 0.02

    The TCP/IP networking module in Unisys ClearPath MCP systems with TCP-IP-SW 57.1 before 57.152, 58.1 before 58.142, or 59.1 before 59.172, when running a TLS 1.2 service, allows remote attackers to cause a denial of service (network connectivity disruption) via a client hello…

  • CVE-2025-23721HigMar 3, 2025
    risk 0.46cvss 7.1epss 0.00

    Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in cloudvn Mobigate mobigatevn allows Reflected XSS.This issue affects Mobigate: from n/a through <= 1.0.3.

  • CVE-2017-5873MedApr 11, 2017
    risk 0.44cvss 6.7epss 0.00

    Unquoted Windows search path vulnerability in the guest service in Unisys s-Par before 4.4.20 allows local users to gain privileges via a Trojan horse executable file in the %SYSTEMDRIVE% directory, as demonstrated by program.exe.

  • CVE-2015-4049MedFeb 3, 2017
    risk 0.44cvss 6.8epss 0.01

    Unisys Libra 43xx, 63xx, and 83xx, and FS600 class systems with MCP-FIRMWARE 40.0 before 40.0IC4 Build 270 might allow remote authenticated users to cause a denial of service (data corruption or system crash) via vectors related to using program operators during EPSILON (level…

  • CVE-2018-5762MedFeb 26, 2018
    risk 0.38cvss 5.9epss 0.01

    The TLS implementation in the TCP/IP networking module in Unisys ClearPath MCP systems with TCP-IP-SW 58.1 before 58.160, 59.1 before 059.1a.17 (IC #17), and 60.0 before 60.044 might allow remote attackers to decrypt TLS ciphertext data by leveraging a Bleichenbacher RSA padding…

  • CVE-2016-7805MedJun 9, 2017
    risk 0.38cvss 5.9epss 0.01

    The mobiGate App for Android version 2.2.1.2 and earlier and mobiGate App for iOS version 2.2.4.1 and earlier do not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

  • CVE-2018-7534MedMay 30, 2018
    risk 0.31cvss 4.7epss 0.00

    In Stealth Authorization Server before 3.3.017.0 in Unisys Stealth Solution, an encryption key may be left in memory.

  • CVE-2022-32555Sep 13, 2022
    risk 0.00cvss epss 0.00

    Unisys Data Exchange Management Studio before 6.0.IC2 and 7.x before 7.0.IC1 doesn't have an Anti-CSRF token to authenticate the POST request. Thus, a cross-site request forgery attack could occur.

  • CVE-2021-43394Jan 24, 2022
    risk 0.00cvss epss 0.01

    Unisys OS 2200 Messaging Integration Services (NTSI) 7R3B IC3 and IC4, 7R3C, and 7R3D has an Incorrect Implementation of an Authentication Algorithm. An LDAP password is not properly validated.

  • CVE-2021-45445Jan 12, 2022
    risk 0.00cvss epss 0.01

    Unisys ClearPath MCP TCP/IP Networking Services 59.1, 60.0, and 62.0 has an Infinite Loop.

  • CVE-2021-35056Jul 15, 2021
    risk 0.00cvss epss 0.00

    Unisys Stealth 5.1 before 5.1.025.0 and 6.0 before 6.0.055.0 has an unquoted Windows search path for a scheduled task. An unintended executable might run.

  • CVE-2020-35542Apr 27, 2021
    risk 0.00cvss epss 0.00

    Unisys Data Exchange Management Studio through 5.0.34 doesn't sanitize the input to a HTML document field. This could be used for an XSS attack.

  • CVE-2021-28492Apr 20, 2021
    risk 0.00cvss epss 0.01

    Unisys Stealth (core) 5.x before 5.0.048.0, 5.1.x before 5.1.017.0, and 6.x before 6.0.037.0 stores passwords in a recoverable format.

  • CVE-2021-3141Mar 18, 2021
    risk 0.00cvss epss 0.00

    In Unisys Stealth (core) before 6.0.025.0, the Keycloak password is stored in a recoverable format that might be accessible by a local attacker, who could gain access to the Management Server and change the Stealth configuration.

  • CVE-2020-24620Oct 1, 2020
    risk 0.00cvss epss 0.00

    Unisys Stealth(core) before 4.0.134 stores passwords in a recoverable format. Therefore, a search of Enterprise Manager can potentially reveal credentials.

  • CVE-2020-12053Jun 22, 2020
    risk 0.00cvss epss 0.01

    In Unisys Stealth 3.4.x, 4.x and 5.x before 5.0.026, if certificate-based authorization is used without HTTPS, an endpoint could be authorized without a private key.

  • CVE-2020-12647May 21, 2020
    risk 0.00cvss epss 0.00

    Unisys ALGOL Compiler 58.1 before 58.1a.15, 59.1 before 59.1a.9, and 60.0 before 60.0a.5 can emit invalid code sequences under rare circumstances related to syntax. The resulting code could, for example, trigger a system fault or adversely affect confidentiality, integrity, and…

  • CVE-2019-18193Feb 3, 2020
    risk 0.00cvss epss 0.00

    In Unisys Stealth (core) 3.4.108.0, 3.4.209.x, 4.0.027.x and 4.0.114, key material inadvertently logged under certain conditions. Fixed included in 3.4.109, 4.0.027.13, 4.0.125 and 5.0.013.0.

  • CVE-2019-18386Jan 7, 2020
    risk 0.00cvss epss 0.01

    Systems management on Unisys ClearPath Forward Libra and ClearPath MCP Software Series can fault and have other unspecified impact when receiving specifically crafted message payloads over a systems management communication channel

  • CVE-2009-1628Jun 26, 2009
    risk 0.00cvss epss 0.05

    Stack-based buffer overflow in mnet.exe in Unisys Business Information Server (BIS) 10 and 10.1 on Windows allows remote attackers to execute arbitrary code via a crafted TCP packet.

  • CVE-2002-2179Dec 31, 2002
    risk 0.00cvss epss 0.02

    The dynamic initialization feature of the ClearPath MCP environment allows remote attackers to cause a denial of service (crash) via a TCP port scan using a tool such as nmap.