Vulnerabilities > Unisys > Stealth > 3.4

DATE CVE VULNERABILITY TITLE RISK
2020-10-01 CVE-2020-24620 Use of Hard-coded Credentials vulnerability in Unisys Stealth
Unisys Stealth(core) before 4.0.134 stores passwords in a recoverable format.
local
low complexity
unisys CWE-798
2.1
2020-06-22 CVE-2020-12053 Incorrect Authorization vulnerability in Unisys Stealth
In Unisys Stealth 3.4.x, 4.x and 5.x before 5.0.026, if certificate-based authorization is used without HTTPS, an endpoint could be authorized without a private key.
network
low complexity
unisys CWE-863
7.5