59.1

CVSS 5.9 - MEDIUM

Attack vector

NETWORK

Attack complexity

HIGH

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

NONE

Availability impact

NONE

network

high complexity

unisys

NVD

Published: 2018-02-26

Updated: 2019-10-03

Summary

The TLS implementation in the TCP/IP networking module in Unisys ClearPath MCP systems with TCP-IP-SW 58.1 before 58.160, 59.1 before 059.1a.17 (IC #17), and 60.0 before 60.044 might allow remote attackers to decrypt TLS ciphertext data by leveraging a Bleichenbacher RSA padding oracle, aka a ROBOT attack.

Vulnerable Configurations

Part	Description	Count
Application	Unisys Unisys Clearpath MCP 58.1 Unisys Clearpath MCP 59.1 Unisys Clearpath MCP *	3

References

https://public.support.unisys.com/common/public/vulnerability/NVD_Detail_Rpt.aspx?ID=46