This page lists publicly disclosed CVE vulnerabilities affecting unisys stealth (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2024-23758 | An issue discovered in Unisys Stealth 5.3.062.0 allows attackers to view sensitive information via the Enterprise ManagementInstaller_msi.log file. | [email protected] | 7.5 | 0.47% | 2024-02-20 | 2026-06-17 |
| CVE-2021-35056 | Unisys Stealth 5.1 before 5.1.025.0 and 6.0 before 6.0.055.0 has an unquoted Windows search path for a scheduled task. An unintended executable might run. | [email protected] | 6.7 | 0.25% | 2021-07-15 | 2026-06-16 |
| CVE-2021-28492 | Unisys Stealth (core) 5.x before 5.0.048.0, 5.1.x before 5.1.017.0, and 6.x before 6.0.037.0 stores passwords in a recoverable format. | [email protected] | 4.9 | 0.85% | 2021-04-20 | 2026-06-16 |
| CVE-2021-3141 | In Unisys Stealth (core) before 6.0.025.0, the Keycloak password is stored in a recoverable format that might be accessible by a local attacker, who could gain access to the Management Server and change the Stealth configuration. | [email protected] | 7.8 | 0.22% | 2021-03-18 | 2026-06-17 |
| CVE-2020-24620 | Unisys Stealth(core) before 4.0.134 stores passwords in a recoverable format. Therefore, a search of Enterprise Manager can potentially reveal credentials. | [email protected] | 7.8 | 0.29% | 2020-10-01 | 2026-06-16 |
| CVE-2020-12053 | In Unisys Stealth 3.4.x, 4.x and 5.x before 5.0.026, if certificate-based authorization is used without HTTPS, an endpoint could be authorized without a private key. | [email protected] | 9.8 | 0.68% | 2020-06-22 | 2026-06-16 |
| CVE-2019-18193 | In Unisys Stealth (core) 3.4.108.0, 3.4.209.x, 4.0.027.x and 4.0.114, key material inadvertently logged under certain conditions. Fixed included in 3.4.109, 4.0.027.13, 4.0.125 and 5.0.013.0. | [email protected] | 7.5 | 0.28% | 2020-02-03 | 2026-06-16 |
| CVE-2018-6592 | Unisys Stealth 3.3 Windows endpoints before 3.3.016.1 allow local users to gain access to Stealth-enabled devices by leveraging improper cleanup of memory used for negotiation key storage. | [email protected] | 7.8 | 0.30% | 2018-02-19 | 2026-06-16 |