CVE-2021-35056

MEDIUM
Published Jul 15, 20214y ago · Modified Jun 17, 20261w ago
6.7 CVSS 3.1
Medium
Find Similar
Published Jul 15, 2021 4y ago
Last Modified Jun 17, 2026 1w ago

Description

Unisys Stealth 5.1 before 5.1.025.0 and 6.0 before 6.0.055.0 has an unquoted Windows search path for a scheduled task. An unintended executable might run.

CVSS Details

Base Score
6.7
Exploitability
0.8
Impact
5.9
Vector string
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required High
User Interaction None
Scope Unchanged
Confidentiality High
Integrity High
Availability High

Threat Intelligence

No active exploitation signals — not in CISA KEV and no EPSS score yet.

Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-428

Affected Products 2

VendorProductVersionRange
unisysstealth*≥5.1.0  –  <5.1.025.0
unisysstealth*≥6.0  –  <6.0.055.0

References 2

  • public.support.unisys.com https://public.support.unisys.com/common/public/vulnerability/NVD_Detail_Rpt.aspx?ID=64
    PatchVendor Advisory
  • public.support.unisys.com https://public.support.unisys.com/common/public/vulnerability/NVD_Home.aspx
    Vendor Advisory

Remediation

  • public.support.unisys.com https://public.support.unisys.com/common/public/vulnerability/NVD_Detail_Rpt.aspx?ID=64
    PatchVendor Advisory