CVE-2019-18193 : Security Advisory and Response
Learn about CVE-2019-18193 affecting Unisys Stealth versions 3.4.108.0, 3.4.209.x, 4.0.027.x, and 4.0.114. Find out how to mitigate the key material logging issue.
Unisys Stealth (core) versions 3.4.108.0, 3.4.209.x, 4.0.027.x, and 4.0.114 had a vulnerability where key material was unintentionally logged. The issue has been resolved in versions 3.4.109, 4.0.027.13, 4.0.125, and 5.0.013.0.
Understanding CVE-2019-18193
This CVE entry addresses the logging of key material in Unisys Stealth (core) versions, highlighting the affected versions and the fix implemented.
What is CVE-2019-18193?
The vulnerability in Unisys Stealth (core) versions allowed key material to be logged inadvertently, posing a security risk.
The Impact of CVE-2019-18193
The logging of key material could potentially expose sensitive information, leading to security breaches and unauthorized access.
Technical Details of CVE-2019-18193
This section provides specific technical details regarding the vulnerability.
Vulnerability Description
Key material was logged unintentionally in Unisys Stealth (core) versions, creating a security loophole.
Affected Systems and Versions
- Unisys Stealth (core) versions 3.4.108.0, 3.4.209.x, 4.0.027.x, and 4.0.114
Exploitation Mechanism
The vulnerability allowed key material to be logged under specific conditions, potentially compromising security.
Mitigation and Prevention
Protective measures and actions to address the CVE-2019-18193 vulnerability.
Immediate Steps to Take
- Upgrade to fixed versions: 3.4.109, 4.0.027.13, 4.0.125, or 5.0.013.0
- Monitor and restrict access to sensitive information
Long-Term Security Practices
- Regularly review and update security configurations
- Conduct security audits and assessments periodically
Patching and Updates
- Apply patches and updates provided by Unisys to ensure system security