Product Support

Product Security Vulnerability Home


Use below table to view currently reported vulnerability records.  Click on the column header to sort the table. 


Unisys IDTitleStatusImpactProductCVE-IDDate PublishedDate Updated
UIS-2022-1Data Exchange Management Studio Cross-Site Request Forgery Vulner...PublishedHIGH Data Exchange CVE-2022-32555 09/25/202209/25/2022
UIS-2021-6Flaws in NTSI LDAP AuthenticationPublishedCRITICAL Messaging Integration Services (NTSI) CVE-2021-43394 02/04/202202/04/2022
UIS-2021-7Malformed TCP options can push networking stack to use 100% of CP...PublishedHIGH MCP TCP/IP CVE-2021-45445 01/12/202201/12/2022
UIS-2021-5Unisys Cargo - Mobile Application SecurityPublishedLOW Unisys Cargo Mobile Application CVE-2021-43388 12/13/202112/13/2021
UIS-2021-4Scheduled Task Potential VulnerabilityPublishedMEDIUM Stealth(core) CVE-2021-35056 07/24/202107/24/2021
UIS-2021-1Data Exchange Management Studio has a Cross Site Scripting vulner...PublishedHIGH Data Exchange CVE-2020-35542 04/24/202104/24/2021
UIS-2021-3Stealth Services Password ExposedPublishedMEDIUM Stealth(core) CVE-2021-28492 04/19/202104/19/2021
UIS-2021-2The Keycloak password is exposed PublishedHIGH Stealth CVE-2021-3141 03/17/202103/17/2021
UIS-2020-3Search of Enterprise Manager can potentially reveal credentialsPublishedHIGH Stealth Solution CVE-2020-24620 09/29/202009/29/2020
UIS-2020-1Endpoint Certificate Validation using HTTP may Erroneously Succee...PublishedLOW Stealth Solution CVE-2020-12053 06/22/202006/22/2020
UIS-2019-2Key Material Inadvertently LoggedPublishedHIGH Stealth Solution CVE-2019-18193 06/01/202006/01/2020
UIS-2020-2Under rare circumstances, the Algol Compiler can emit invalid cod...PublishedHIGH ALGOL CVE-2020-12647 05/20/202005/20/2020
UIS-2019-3Systems management on Unisys ClearPath Forward Libra and ClearPat...PublishedHIGH MCP-FIRMWARE CVE-2019-18386 01/06/202001/06/2020
UIS-2018-3Encryption key may be left in memoryPublishedMEDIUM Stealth Solution CVE-2018-7534 05/25/201805/25/2018
UIS-2017-2ClearPath MCP TCP/IP Networking dumps when parsing TLS v1.2 clien...PublishedHIGH TCP-IP-SW CVE-2017-5872 04/23/201804/23/2018
UIS-2018-4Certain crafted packets may crash Linux or AIX Stealth endpointPublishedHIGH Stealth Solution CVE-2018-8049 03/29/201803/29/2018
UIS-2018-5ePortal Manager has an SQL injection vulnerability in the Managem...PublishedHIGH CLEARPATHEPORTAL; EPORTAL-2200 CVE-2018-8802 03/22/201803/22/2018
UIS-2018-1Memory used to store the negotiation key is not cleared or releas...PublishedMEDIUM Stealth Solution CVE-2018-6592 03/09/201803/09/2018
UIS-2018-2MCP TLS susceptible to ROBOT attackPublishedMEDIUM MCP TCP/IP Networking CVE-2018-5762 02/23/201802/23/2018
UIS-2017-4Improper program execution from incorrect literal handling on Lib...PublishedHIGH Libra 6400, 8400, FS601 CVE-2017-13684 09/27/201709/27/2017
UIS-2017-1Unquoted service path in s-Par guest service fails Nessus penetra...PublishedMEDIUM s-Par CVE-2017-5873 04/10/201704/10/2017
UIS-2015-5CPM stack corruption on Libra 43xx/63xx/83xx class systems can oc...PublishedMEDIUM MCP-FIRMWARE 40.0 CVE-2015-4049 10/28/201510/28/2015
UIS-2014-35JMX-Console in JBoss AS is vulnerable to attackPublishedMEDIUM MCP OSP or Notification Sevices servers CVE-2010-0738 01/07/201501/07/2015
UIS-2014-1OpenSSL "Heartbleed" vulnerability on OS 2200 QProcessor PublishedLOW OS 2200 QProcessor CVE-2014-0160 06/19/201406/19/2014

Paper copies are not controlled and may be out of date; reference the Product Support Web site for current data.