Igel Universal Management Suite — known CVE vulnerabilities
Every CVE whose affected-product data names Igel Universal Management Suite, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2022-25806 — CVSS 8.8 (high): An issue was discovered in the IGEL Universal Management Suite (UMS) 6.07.100. A hardcoded DES key in the PrefDBCredentials class allows an…
CVE-2022-25805 — CVSS 6.5 (medium): An issue was discovered in the IGEL Universal Management Suite (UMS) 6.07.100. The transmission of cleartext LDAP bind credentials by the…
CVE-2022-25804 — CVSS 5.5 (medium): An issue was discovered in the IGEL Universal Management Suite (UMS) 6.07.100. Insecure permissions for the serverconfig registry key…
CVE-2022-25807 — CVSS 5.5 (medium): An issue was discovered in the IGEL Universal Management Suite (UMS) 6.07.100. A hardcoded DES key in the LDAPDesPWEncrypter class allows…