PT-2026-32937 · Unisys · Webperfect Image Suite
Vulncheck
·
Published
2026-04-14
·
Updated
2026-05-06
·
CVE-2026-39906
CVSS v3.1
10
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Unisys WebPerfect Image Suite version 3.0.3960.22810
Unisys WebPerfect Image Suite version 3.0.3960.22604
Description
An exposed deprecated .NET Remoting TCP channel allows remote unauthenticated attackers to leak NTLMv2 machine-account hashes. This is achieved by supplying a Windows UNC path as a target file argument through object-unmarshalling techniques. Attackers can capture the leaked NTLMv2 hash and relay it to other hosts to achieve privilege escalation or lateral movement, depending on network configuration and patch level.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
LPE
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Webperfect Image Suite