PT-2020-9943 · Unisys · Unisys Stealth

Published

2020-02-03

Updated

2020-04-09

CVE-2019-18193

CVSS v3.1

7.5

High

Vector

AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Unisys Stealth (core) versions 3.4.108.0 through 3.4.108.0 Unisys Stealth (core) versions 3.4.209.x Unisys Stealth (core) versions 4.0.027.x through 4.0.027.12 Unisys Stealth (core) version 4.0.114

Description The issue involves key material being inadvertently logged under certain conditions.

Recommendations For Unisys Stealth (core) version 3.4.108.0, update to version 3.4.109. For Unisys Stealth (core) versions 3.4.209.x, update to a fixed version, as no specific fixed version is provided for this range. For Unisys Stealth (core) versions 4.0.027.x, update to version 4.0.027.13 or later. For Unisys Stealth (core) version 4.0.114, update to version 4.0.125 or later.

Fix

Insertion into Log File

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-532

Related Identifiers

CVE-2019-18193

Affected Products

Unisys Stealth

PT-2020-9943 · Unisys · Unisys Stealth

CVE-2019-18193

Weakness Enumeration

Related Identifiers

Affected Products

References · 4