Vulnerabilities > Unisys > High

DATE CVE VULNERABILITY TITLE RISK
2018-02-19 CVE-2018-6592 Improper Resource Shutdown or Release vulnerability in Unisys Stealth 3.3
Unisys Stealth 3.3 Windows endpoints before 3.3.016.1 allow local users to gain access to Stealth-enabled devices by leveraging improper cleanup of memory used for negotiation key storage.
local
low complexity
unisys CWE-404
7.8
2017-09-30 CVE-2017-13684 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Unisys Mcp-Firmware 40.0/43.185
Unisys Libra 64xx and 84xx and FS601 class systems with MCP-FIRMWARE before 43.211 allow remote authenticated users to cause a denial of service (program crash) or have unspecified other impact via vectors related to incorrect literal handling, which trigger CPM stack corruption.
local
low complexity
unisys CWE-119
7.8
2017-03-10 CVE-2017-5872 Improper Input Validation vulnerability in Unisys Clearpath MCP 57.1/58.1/59.1
The TCP/IP networking module in Unisys ClearPath MCP systems with TCP-IP-SW 57.1 before 57.152, 58.1 before 58.142, or 59.1 before 59.172, when running a TLS 1.2 service, allows remote attackers to cause a denial of service (network connectivity disruption) via a client hello with a signature_algorithms extension above those defined in RFC 5246, which triggers a full memory dump.
network
low complexity
unisys CWE-20
7.5