CVE-2021-3141

2021-03-1804:03:39

mitre

www.cve.org

unisys

stealth

keycloak

password storage

vulnerability

management server

AI Score

7.8

Confidence

High

EPSS

Percentile

5.1%

JSON

In Unisys Stealth (core) before 6.0.025.0, the Keycloak password is stored in a recoverable format that might be accessible by a local attacker, who could gain access to the Management Server and change the Stealth configuration.

References

public.support.unisys.com/common/public/vulnerability/NVD_Detail_Rpt.aspx?ID=62