CVE-2026-1433
Gravedad CVSS v4.0:
MEDIA
Tipo:
CWE-522
Credenciales insuficientemente protegidas
Fecha de publicación:
06/07/2026
Última modificación:
06/07/2026
Descripción
*** Pendiente de traducción *** uniFLOW Universal Login Manager (ULM) Standalone<br />
contains an information disclosure vulnerability that may allow an<br />
authenticated administrator to access sensitive configuration information<br />
through the ULM Remote User Interface (RUI). Exploitation requires<br />
administrative privileges and may disclose configuration data associated with<br />
SMTP or LDAP integrations. ULM deployments connected to uniFLOW Server or<br />
uniFLOW Online are not affected.
Impacto
Puntuación base 4.0
4.80
Gravedad 4.0
MEDIA



