Vulnerability in Systems Management of Unisys ClearPath Forward Libra and MCP Software
CVE-2019-18386

8.7HIGH

Key Information:

Vendor: Unisys
Status: Mcp Firmware
Vendor: CVE Published:; 7 January 2020

What is CVE-2019-18386?

An issue exists within the systems management of Unisys ClearPath Forward Libra and ClearPath MCP Software Series that can lead to faults and other unspecified impacts. This vulnerability arises when specifically crafted message payloads are transmitted over the systems management communication channel, potentially compromising the integrity and availability of the systems.

References

https://public.support.unisys.com/common/public/vulnerabi...

x_refsource_CONFIRM

CVSS V3.1

Score:

8.7

Severity:

HIGH

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 7, 2020
Vulnerability Reserved
Oct 23, 2019

CVE-2019-18386 Data

JSON