CVE-2018-6592
HIGHUnisys Stealth 3.3 Windows Endpoints < 3.3.016.1 - Unauthenticated Memory Leak via Negotiation Key Storage
Title source: llmDescription
Unisys Stealth 3.3 Windows endpoints before 3.3.016.1 allow local users to gain access to Stealth-enabled devices by leveraging improper cleanup of memory used for negotiation key storage.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_confirm
http://public.support.unisys.com/common/public/vulnerability/NVD_Detail_Rpt.aspx?ID=45
Scores
CVSS v3
7.8
EPSS
0.0030
EPSS Percentile
21.6%
Attack Vector
LOCAL
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-404
Status
published
Products (1)
unisys/stealth
3.3 - 3.3.016.1
Published
Feb 19, 2018
Tracked Since
Feb 18, 2026