CVE-2021-43394

Name of the Vulnerable Software and Affected Versions Unisys OS 2200 Messaging Integration Services (NTSI) versions 7R3B IC3 and IC4, 7R3C, and 7R3D

Description The issue is related to an incorrect implementation of an authentication algorithm. Specifically, an LDAP password is not properly validated, which can lead to security concerns.

Recommendations For Unisys OS 2200 Messaging Integration Services (NTSI) versions 7R3B IC3 and IC4, 7R3C, and 7R3D, consider temporarily restricting access to LDAP authentication until a proper fix is available. As a mitigation measure, review and strengthen password validation mechanisms to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.