PT-2026-55876 · Unknown · Uniflow Universal Login Manager

Published

2026-07-06

·

Updated

2026-07-06

·

CVE-2026-1433

CVSS v4.0

4.8

Medium

VectorAV:A/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:N/SC:L/SI:N/SA:N
Name of the Vulnerable Software and Affected Versions uniFLOW Universal Login Manager (ULM) Standalone (affected versions not specified)
Description An information disclosure issue exists in the ULM Remote User Interface (RUI) that allows an authenticated administrator to access sensitive configuration data. This specifically affects deployments of the standalone version and may expose configuration details related to LDAP or SMTP integrations. Deployments connected to uniFLOW Online or uniFLOW Server are not impacted.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Insufficiently Protected Credentials

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

Related Identifiers

CVE-2026-1433

Affected Products

Uniflow Universal Login Manager